We currently use Office 365 with AD Sync to hashes to keep our users accounts in sync with our on prem active directory accounts. One annoyance we've always had is if a user changes their password, they have to wait 30 minutes (the lowest time AD Connect will go to sync) for it to replicate. On top of it they have to re-sign into all of their on prem apps (Skype, Outlook, etc). We don't really care about the web login, but more so the on prem apps. While our users are "ok" so far with it, we want to streamline the experience for them. I recently was talking to another IT Admin about how they implemented AD Connect Pass Through Authentication, and he believes this is the solution we're looking for. So I Googled it and came up with this article: https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-pass-through-authentication
I was just curious if anyone else has experience with this? Is this the magic bullet we are looking for? Was it hard to implement?