Azure is not writing back to On Prem, Normal troubleshooting fails to resolve

BmoreOs 141 Reputation points
2022-07-07T13:49:55.813+00:00

Hello -

Prior to me starting with this company, a vendor setup Azure to On Prem sync. Reading the documentation they published, it says On Prem changes will sync to the cloud and cloud changes (password resets) will sync back down to On Prem. We have no issues from On Prem to Azure but password resets from Azure are not syncing to On Prem. This is not a huge issue for us as the majority of our staff are remote but as we grow, the issue is increasing.

We had remote users come into HQ for a week long meeting and the logins to their laptops would not work. We then realized they were using their cloud credentials and only their old on prem AD passwords would work on the laptop.

Event viewer and other logs do not show any obvious reasons for the failure and I used Microsoft Learn to troubleshoot and they did not help. Password write back is enabled on Azure AD Connect from our On Prem server.

Thanks

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,891 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,270 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Limitless Technology 39,811 Reputation points
    2022-07-12T07:24:24.04+00:00

    Hi there,

    Check your Azure AD connect sync scheduler. By default every 30 minutes a synchronization cycle is run. If you have modified the synchronization cycle you will need to make sure that a synchronization cycle is run at least once every 7 days.

    Azure AD Connect sync synchronizes changes occurring in your on-premises directory using a scheduler. There are two scheduler processes, one for password sync and another for object/attribute sync and maintenance tasks.

    Azure AD Connect sync: Scheduler

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-feature-scheduler

    -----------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer–

    0 comments No comments

  2. alta94 2,191 Reputation points
    2022-07-12T07:33:54.403+00:00

    Hi

    Login in Azure portal
    Search for Azure Active Directory Connect Health
    Check the following status :
    1 ) Sync error 2) sync service is healthy ? 3) Last updated time 4) Active Alerts

    --If the reply is helpful, please Upvote and Accept it as an answer–

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.