📋 Microsoft Entra Documentation Changes

Daily summary for changes since July 17th 2025, 8:27 PM PDT

Report generated on July 18th 2025, 8:27 PM PDT

📊 Summary

19
Total Commits
0
New Files
2
Modified Files
0
Deleted Files
7
Contributors

📝 Modified Documentation Files

MODIFIED docs/identity/hybrid/connect/tshoot-connect-password-hash-synchronization.md
Modified by Nuno Alexandre on Jul 18, 2025 5:09 PM
📖 View on learn.microsoft.com
+4 / -4 lines changed
Commit: Update tshoot-connect-password-hash-synchronization.md
Changes:
Before
After
 
1. Is the Connect server in [staging mode](how-to-connect-sync-staging-server.md)? A server in staging mode does not synchronize any passwords.
 
1. Run the script in the [Get the status of password sync settings](#get-the-status-of-password-sync-settings) section. It gives you an overview of the password sync configuration.
 
![PowerShell script output from password sync settings](./media/tshoot-connect-password-hash-synchronization/psverifyconfig.png)
3. Select the connector, and then select **Properties**.
1. Go to **Connect to Active Directory Forest**.
 
![Account used by Active Directory connector](./media/tshoot-connect-password-hash-synchronization/connectoraccount.png)
Note the username and the domain where the account is located.
* Replicate Directory Changes
* Replicate Directory Changes All
 
1. Are the domain controllers reachable by Microsoft Entra Connect? If the Connect server can't connect to all domain controllers, configure **Only use preferred domain controller**.
 
![Domain controller used by Active Directory connector](./media/tshoot-connect-password-hash-synchronization/preferreddc.png)
 
1. Is the Connect server in [staging mode](how-to-connect-sync-staging-server.md)? A server in staging mode does not synchronize any passwords.
 
2. Run the script in the [Get the status of password sync settings](#get-the-status-of-password-sync-settings) section. It gives you an overview of the password sync configuration.
 
![PowerShell script output from password sync settings](./media/tshoot-connect-password-hash-synchronization/psverifyconfig.png)
3. Select the connector, and then select **Properties**.
4. Go to **Connect to Active Directory Forest**.
 
![Account used by Active Directory connector](./media/tshoot-connect-password-hash-synchronization/connectoraccount.png)
Note the username and the domain where the account is located.
* Replicate Directory Changes
* Replicate Directory Changes All
 
6. Are the domain controllers reachable by Microsoft Entra Connect? If the Connect server can't connect to all domain controllers, configure **Only use preferred domain controller**.
 
![Domain controller used by Active Directory connector](./media/tshoot-connect-password-hash-synchronization/preferreddc.png)
MODIFIED docs/identity/hybrid/connect/how-to-connect-password-hash-synchronization.md
Modified by Nuno Alexandre on Jul 18, 2025 5:19 PM
📖 View on learn.microsoft.com
+1 / -1 lines changed
Commit: Update how-to-connect-password-hash-synchronization.md
Changes:
Before
After
 
##### CloudPasswordPolicyForPasswordSyncedUsersEnabled
 
The Cloud Password Policy for Password-Synced Users feature (in the deprecated MSOnline PowerShell module it was called *EnforceCloudPasswordPolicyForPasswordSyncedUsers*) ensures that Microsoft Entra ID enforces its native password policies (such as expiration and lockout), for users whose passwords are synchronized from on-premises Active Directory. This feature enables you to align the same on-premises Active Directory password policy with the Microsoft Entra password policy, for synchronized users.
 
If there are synchronized users that only interact with Microsoft Entra integrated services and must also comply with a password expiration policy, you can force them to comply with your Microsoft Entra password expiration policy by enabling the *CloudPasswordPolicyForPasswordSyncedUsersEnabled* feature.
 
 
##### CloudPasswordPolicyForPasswordSyncedUsersEnabled
 
The Cloud Password Policy for Password-Synced Users feature ensures that Microsoft Entra ID enforces its native password policies (such as expiration and lockout), for users whose passwords are synchronized from on-premises Active Directory. This feature enables you to align the same on-premises Active Directory password policy with the Microsoft Entra password policy, for synchronized users.
 
If there are synchronized users that only interact with Microsoft Entra integrated services and must also comply with a password expiration policy, you can force them to comply with your Microsoft Entra password expiration policy by enabling the *CloudPasswordPolicyForPasswordSyncedUsersEnabled* feature.
 

🤖 This report was automatically generated by the Entra Docs Monitor

📧 Delivered to [email protected]

🔗 Visit Repository