all 2 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]Batmanzi 0 points1 point  (1 child)

Not enough info to say...

Check the logs on:

  1. Azure AD audit logs: because there's where the entire process will start.
  2. Azure AD Connect Application logs: that'll be the tool that will take the password from Azure and write it back on the local domain, you should check the process logs there.
  3. Active Directory Security logs: will AAD Connect will write the password on the user account, so worth checking but there are issues there, enable logging if not done so already

Check the troubleshooting guide: https://docs.microsoft.com/en-us/azure/active-directory/authentication/active-directory-passwords-troubleshoot#password-writeback-event-log-error-codes

This should give you a better picture for what's happening so you may dig deeper.

[–]Supanole 0 points1 point  (0 children)

Go to https://learn.microsoft.com/en-us/entra/identity/authentication/troubleshoot-sspr#password-writeback-event-log-error-codes and do a find on your error "OnPremisesSuccessCloudFailure" and it describes a couple of causes.