Cannot enable password writeback with Microsoft 365 Business and Azure AD Connect
As of January 2019 (link below), password writeback now available for Microsoft 365 Business, and all the documentation I could find indicates that Azure AD Premium is not required for password writeback. Goal is to use Self Service Password Reset.
After upgrading from Office 365 Business to Microsoft 365 Business, I followed the guide "How-to: Configure password writeback" including the changes in Azure AD Connect and the local AD permissions for the indicated directory synchronization account. However I still see:
--
In blade > Dashboard > Users > Password reset > On-premises integration
"On-premises integration has not been enabled. Learn how to enable password writeback."
--
I can't find anything on any of the doc pages (linked below) that would indicate this possible outcome, other than:
"If you install, configure, and enable Azure AD Connect, you have the following additional options for on-premises integrations. If these options are grayed out, then writeback has not been properly configured."
On-prem server is 2012 R2. Azure AD Connect is working otherwise, I have verified a change from on-premises to Azure. I went through what I could from the indicated troubleshooting guide (second link below).
Pages referenced/researched:
Announced 9 January
https://techcommunity.microsoft.com/t5/Microsoft-365-Business-Blog/Self-Service-Password-Reset-with-on-premises-writeback-in/ba-p/312595
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-sspr-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/active-directory-passwords-troubleshoot#troubleshoot-password-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-sspr-howitworks
As of January 2019 (link below), password writeback now available for Microsoft 365 Business, and all the documentation I could find indicates that Azure AD Premium is not required for password writeback. Goal is to use Self Service Password Reset.
After upgrading from Office 365 Business to Microsoft 365 Business, I followed the guide "How-to: Configure password writeback" including the changes in Azure AD Connect and the local AD permissions for the indicated directory synchronization account. However I still see:
--
In blade > Dashboard > Users > Password reset > On-premises integration
"On-premises integration has not been enabled. Learn how to enable password writeback."
--
I can't find anything on any of the doc pages (linked below) that would indicate this possible outcome, other than:
"If you install, configure, and enable Azure AD Connect, you have the following additional options for on-premises integrations. If these options are grayed out, then writeback has not been properly configured."
On-prem server is 2012 R2. Azure AD Connect is working otherwise, I have verified a change from on-premises to Azure. I went through what I could from the indicated troubleshooting guide (second link below).
Pages referenced/researched:
Announced 9 January
https://techcommunity.microsoft.com/t5/Microsoft-365-Business-Blog/Self-Service-Password-Reset-with-on-premises-writeback-in/ba-p/312595
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-sspr-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/active-directory-passwords-troubleshoot#troubleshoot-password-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-writeback
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-sspr-howitworks