Azure Active Directory (Azure AD) self-service password reset (SSPR)

This time let’s try out SSPR with the new MFA combined registration in a hybrid environment.

Before passwords can be changed on our local AD, Azure AD Connect must be configured with password writeback.

Self-Service Password Reset/Change/Unlock with on-premises writeback is a premium feature of Azure AD, so license is required, it could be Azure AD Premium P1/P2, Enterprise Mobility + Security or Microsoft 365.

So here we go, let’s configure Azure Active Directory Connect.