<div>
set the maximum password age to 180 days<br><br><a href="https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/maximum-password-age" rel="ugc">https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/maximum-password-age</a>
</div>


<div>
Local AD is the one that sets the password policies AzureAD only uses this information<br />
<br />
0 days is never expire<br />
<br />
You should not have modified the default domain policy which sets the Max Password Age to 42 days and used Fine Grained Password Policy
</div>


<div>
I was looking at using the fine grained password policy<br>the &nbsp;reason the Max Password Age in the computer policy on the domain server was set to 0 the Microsoft technicians said it need to to be set to 0 or the Azure user password reset wouldn't work with out throwing up a error, which is what we had issues with at first, but that's working and we want all users to be able to change their password using<br>To use SSPR - <a href="https://aka.ms/sspr" rel="ugc">https://aka.ms/sspr</a>
</div>


<div>
that is not a requirerment of SSPR - <strong><a href="https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr" rel="ugc">https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr</a></strong><br><br>Did they give a reason ? Unfortunately MS support has got to the point where its almost completely untrustworthy.... the answers you get are basic at best and their only goal is to mark the call as closed - not actually help.
</div>


<div>
their reason was it was a requirement to make it work and I did read a document at the time which too said this setting need to be 0 to make it work.<br>has it was I think our main problem we where testing on accounts that where set has administrator's on the Local AD<br>now this issue is resolved I can test these setting by returning them to the previous numbers.
</div>


Technical Director

Alan Duck

<div>
these guys where really helpfull&nbsp;
</div>


<div>
<div class="content wysiwyg-content fr-view">
we has successfully create a synced Azure AD and Local AD &nbsp;<br>and have a Singe password working but to do this the password policy for the local AD for pass word maximum age was set to 0 <br>what we want to do is set the password policy to force passwords to be changed no later than 180 days&nbsp;
</div>
</div>



we has successfully create a synced Azure AD and Local AD  
and have a Singe password working but to do this the password policy for the local AD for pass word maximum age was set to 0
what we want to do is set the password policy to force passwords to be changed no later than 180 days 

creating a user password policy for a Azure AD, Local AD synced system

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.