Enable-OnlinePasswordWriteBack - Unable to configure the password reset service : Error getting authtoken

Issue: Enable-OnlinePasswordWriteBack fails with error:

Error getting authtoken from https://login.windows.net/[TENANT].onmicrosoft.com/oauth2/token

Additional details:

Forest and domain are 2003 level or above
DirSync tool installed this week using newest version from office 365 portal
No outbound proxy server in use
Port TCP 8xx / 80 /443 outbound allowed
Self-Service Password reset enabled on Azure Tenancy

Process Details:

Open elevated PowerShell Window using an account with Enterprise Admin rights:
Run import-module DIRSYNC
Run Enable-OnlinePasswordWriteBack
1. Local AD account used : an account with Enterprise Admin rights
2. Azure AD account used - an account with Global Administrator rights

PS Error Output:

PS C:\> Enable-OnlinePasswordWriteBack

cmdlet Enable-OnlinePasswordWriteBack at command pipeline position 1

Supply values for the following parameters:

LocalADCredential

AzureADCredential

Enable-OnlinePasswordWriteBack : Unable to configure the password reset service

: Error getting authtoken from https://login.windows.net/[TENANT].onmicrosoft.com/oauth2/token.

At line:1 char:31

+ Enable-OnlinePasswordWriteBack <<<<

+ CategoryInfo : InvalidOperation: (Microsoft.Onlin...sswordWrite

Back:EnableOnlinePasswordWriteBack) [Enable-OnlinePasswordWriteBack], Cmdl

etInvocationException

+ FullyQualifiedErrorId : 400,Microsoft.Online.Coexistence.PS.Config.Enabl

eOnlinePasswordWriteBack

Event Log Output:

Log Name: Application

Source: PasswordResetService

Event ID: 32015

Level: Error

TrackingId: [TRACKINGID], Error getting authtoken from https://login.windows.net/[tenant].onmicrosoft.com/oauth2/token, Details: System.Net.WebException: The remote server returned an error: (400) Bad Request.

at System.Net.HttpWebRequest.GetResponse()

at Microsoft.CredentialManagement.OnPremisesPasswordReset.Library.OAuthUtils.GetAuthenticationToken(String stsUrl, String stsClientId, String authenticationResourceUrl, String teanantAdminUPN, String tenantAdminPassword, String tenantDomain)

<Data>TrackingId: [TRACKINGID], Error getting authtoken from https://login.windows.net/[tenant].onmicrosoft.com/oauth2/token, Details: System.Net.WebException: The remote server returned an error: (400) Bad Request.

at System.Net.HttpWebRequest.GetResponse()

</EventData>

Enable-OnlinePasswordWriteBack - Unable to configure the password reset service : Error getting authtoken

Trending Articles

Scuffham Amps - S-GEAR 2.6.0 VST, AAX, STANDALONE x86 x64 (R2R NO iLok2, +NO...

Practice Sheet of Right form of verbs for HSC Students

VHSE First (1st) Allotment 2025 - vhscap.kerala.gov.in

UNIVERSE LEAGUE – UNIVERSE LEAGUE – WAR (We Are Ready) – EP [iTunes Plus M4A]

City Hunter Teledrama – Episode 18 – 07th May 2016

Comment on Proposed Criteria for Identifying Predatory Conferences by Luke...

Bureau of Internal Revenue: Regional Offices (Directory)

Kendrick Lamar – Not Like Us (2024) [24Bit-88.2kHz] [PMEDIA] ⭐️

Inception 2010 Hindi Dual Audio 650MB BRRip 720p ESubs HEVC

East Hull MD admits sexual assaults after another victim comes forward

Download: FK ft Shenky – Nakuyewa ”Prod by: Shenky”

R. v. Sargeant, 2023 ONSC 6406 (CanLII)

Rajasthan Board 10th Result 2016 Roll No wise & Name Wise

Who’s been sentenced at Northampton Magistrates’ Court

मतलबी दोस्त स्टेट्स | Matlabi Dost Status in Hindi – Selfish Friends Status

Family cries out as traditional ruler allegedly abducts brother, extorts N2.5m

Long-Running Conflict In Springfield (MA) Gangland Sphere Has Manzi Family &...

Wondershare Filmora X v10.1.20.16 x64

Man arrested after fracas in flat

Man charged in ongoing Sexual Assault Investigation Derek Nyilas, 46, Faces...