Share via

Error when configuring password writeback in AD Connect

Julian Symons 26 Reputation points
2022-05-05T07:39:02.19+00:00

Have been trying to get Password writeback working in Azure AD Connect but its failing to configure. I have followed all the steps as per the microsoft article -

https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback

I have attached the event logs I get when installing in text format

I have also followed the troubleshooting steps as per - https://learn.microsoft.com/en-gb/azure/active-directory/authentication/troubleshoot-sspr-writeback?WT.mc_id=Portal-Microsoft_Azure_Support

Microsoft Security Microsoft Entra Microsoft Entra ID
0 comments
Accepted answer
  1. Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator
    2022-05-05T23:58:32.7+00:00

    Hi @JulianSymonsFTGITMGR-3282 ,

    Thank you for sharing the event logs!

    I notice that you are receiving the following error: 

    The client and server cannot communicate, because they do not possess a common algorithm.

    According to several sources, this error can occur if you have not enabled either TLS 1.2 or 1.3 on the Azure AD Connect server, OR if you have not updated windows to support that version of TLS.

    You need to enable TLS 1.2 in both the schannel regkeys and the .netframework regkeys, and if you just enable it in one you may still run into this issue when enabling SSPR. (See related discussion.)

    Let me know if you have further questions!

    -

    If the information provided was helpful to you, please mark the thread as answer so that others in the community searching for similar information can more easily find a solution.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.