I've been trying to wrap my head around the delayed password changes in my current cloud-based organization. In my previous company, which was fully cloud-based, password resets and changes took no longer than five minutes. However, at my new organization, which has a single on-prem server for finance, it seems like password changes can take hours or even days to sync. For example, when I hit Ctrl+Alt+Del to change my password, it doesn't update for a while, and I think it has to do with our cloud setup and Entra sync. Why does it take so long for these changes to reflect, especially when there seems to be minimal on-prem infrastructure?
4 Answers
It might also be due to cached credentials. If you log in with the new password by selecting 'other user' and entering your email and the new password, it should connect to the cloud for authentication rather than using cached ones. That could solve the issue for you.
In a cloud environment like this, password resets and license updates shouldn't be significantly delayed. It seems your current organization might have a sync issue where AD is syncing to Azure, but not the other way around. Normally, password changes should reflect within about 15 minutes, even in a hybrid setup. If there's a need for enabling writeback and user password resets in Entra, then using Ctrl+Alt+Del should ideally take you to your cloud credentials for instant updates. It's strange that you'd experience delays stretching into hours or days.
When I changed my password, it seemed to go directly to the cloud, which was new for me. I’m used to it syncing from my local change.
It seems like you might be in over your head with this new role—no offense! When you asked about this, I thought you wanted to understand better. It can sometimes come off as tough love, but the reality is that figuring this out takes time, especially when you're adjusting to a cloud setting like this one.
Yeah, I get that I might seem lost. I recently joined, and there's so much I still don't know, especially with a two-man team managing over 1600 endpoints. I appreciated the advice, but I’m just trying to make sense of it all!
There sounds like there's something off with your setup. Typically, Active Directory (AD) password changes should sync very quickly—within seconds. It would be beneficial for you to check the logs for AD and Azure AD Connect. This way, you can either find the issue or at least a hint on what might be going wrong. Sometimes, it's just a matter of understanding how the system is set up.
I've just started here and I'm still figuring out the network. We have quite a few sites with on-site servers, mostly for connectivity.
I tried that, but even an hour later, my PC wouldn't accept the new password when I locked it.