Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,905 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for posting your question in Microsoft Q&A
If you are syncing your password hashes, then the synced accounts will use the on-premises Active Directory password policies. This does not carry over the password expiry policy as the Azure AD account passwords are set to never expire here however if you are forcing users to change passwords on-premises after xx days, then this will update their Azure AD password once the password is changed anyway.
You can also refer below article,
https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-password-hash-synchronization#password-complexity-policy
If you are looking for the Azure AD password to get expired when on-premises password expires, then you have to configure the Azure AD password policy which should be matching on-prem password expiry.
You have to refer above article to configure the Azure AD password policy.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.