Pricing  Get Quote
 
 

Knowledge Base

Self Service Password Management » Knowledge Base

Troubleshooting password synchronization

This page will help you resolve the most common issues related to password synchronization in Microsoft Azure Active Directory (AD). Before you troubleshoot using the steps below, ensure that Azure AD Connect is updated to the latest version available.

Users are not able to log in to one or any Microsoft cloud service

Below are some scenarios in which this can happen, and their solutions:

  • Cause: The User must change password at next logon setting is enabled.
    • Solution: To resolve this, navigate to the user account options in the Active Directory Users and Computers console, and deselect the checkbox next to User must change password at next logon. Alternatively, you can have the user change their on-premises AD password.
  • Cause: The user changed their password through the Azure AD portal.
    • Solution: Have the user change their on-premises AD password.
  • Cause: Some users are not synced to Azure AD by Azure AD Connect. This could be because of duplicate usernames or mail addresses.
    • Solution: This can be detected using the IdFix tool offered by Microsoft. Now, replace the detected duplicate attributes with unique values.

Passwords are not synced even though directory synchronization is running

Causes:

  • The Synchronize now setting is not enabled.
  • Password synchronization is enabled after directory synchronization was completed.
  • The directory synchronization is yet to be completed.

Solution: Ensure that password synchronization is enabled and perform a full password sync.

Sync AD passwords efficiently with ADSelfService Plus

Azure AD Connect is responsible for synchronizing Azure AD and on-premises AD. Configuring and troubleshooting Azure AD Connect requires knowledge of various PowerShell commands and the corresponding parameter names. This can make password syncing a cumbersome task that is prone to multiple errors.

ADSelfService Plus is an integrated Active Directory self-service password management and single sign-on solution that can easily sync users' AD passwords across multiple platforms in real time, eliminating the need to track multiple passwords.

  • Real-time password sync: Sync AD passwords across multiple applications, right after the password is changed or reset.
  • Easy configuration: Only minimal information is required to set up password sync in ADSelfService Plus.
  • Group and OU-based policies: Enable password sync for select users based on their groups or organizational units (OUs).
  • Universal password policy: Enforce the same password policy across multiple platforms including Active Directory, Microsoft 365, Google Workspace (formerly G Suite), Salesforce, IBM iSeries, and Oracle Database. This way, you can ensure that no password is left weak enough to be successfully attacked.

Other salient features of ADSelfService Plus

  • 1. Self-service password management

    Enable users to reset forgotten passwords and unlock their accounts without involving the help desk, anywhere at any time. Learn more

  • 2. Multi-factor authentication

    Secure machine logon, application logon, and virtual private network (VPN) logon with over 15 authentication methods that can be configured in minutes. Learn more

  • 3. Single sign-on

    Implement single sign-on for over 100 major enterprise applications and custom applications from a single portal. Learn more

  • 5. Password policy enforcer

    Ensure strong passwords that are equipped to fight dictionary attacks, brute-force attacks, and other password threats. Learn more

  • 6. Directory self-update

    Allow users to update personal information in Active Directory, freeing the help desk from this mundane yet repetitive task. Learn more

Sync the AD user password across various platforms automatically, eliminating password fatigue.

  Download a free trial now!  Request demo

Request for Support

Need further assistance? Fill this form, and we'll contact you rightaway.

  • Name
  •  
  • Business Email *
  •  
  • Phone *
  •  
  • Problem Description *
  •  
  • Country
  •  
  • By clicking 'Submit' you agree to processing of personal data according to the Privacy Policy.
Highlights of ADSelfService Plus

Password self-service

Allow Active Directory users to self-service their password resets and account unlock tasks, freeing them from lengthy help desk calls.

One identity with single sign-on

Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications using their Active Directory credentials.

Password and account expiry notification

Intimate Active Directory users of their impending password and account expiry via email and SMS notifications.

Password synchronization

Synchronize Windows Active Directory user passwords and account changes across multiple systems automatically, including Microsoft 365, Google Workspace, IBM iSeries, and more.

Password policy enforcer

Strong passwords resist various hacking threats. Enforce Active Directory users to adhere to compliant passwords by displaying password complexity requirements.

Directory self-update and corporate directory search

Enable Active Directory users to update their latest information themselves. Quick search features help admins scout for information using search keys like contact numbers.

« Home
Knowledge Base »

ADSelfService Plus trusted by

Embark on a journey towards identity security and Zero Trust
Password management Adaptive MFA Enterprise SSO Self-service & security Related products