Our AD connect syncs on-premises AD account passwords to Office 365.
I go to my AD and reset password for a user and check "user must change password at next logon".
The user logins, enter the password I give him and enter his own password. He is getting this error:
Your organization doesn't allow you to update your password on this site. Please update it according to the method recommended by your organization, or ask your admin if you need help.
I am reading this link but dont quite get it: http://www.edutech.me.uk/microsoft/identity-and-access-management/authentication/azure-ad-synchronized-users-with-password-sync-are-unable-to-change-password/
Please advise what I need to do to allow the user to check his password.