Azure AD Pasword Protection

  • 88 Views
  • Last Post 21 January 2019
minwar posted this 21 January 2019

Has anyone had much experience with this yet?  I have installed a proxy and installed a DC agent on prem and have audit mode enabled on Azure config.  The forest and proxy registration seems to have been a success looking at the logs.  On the DC though I just see lots of Event ID 30001 (password accepted due to no policy available). 

Looking in the config partition the following container doesnt contain any child objects.....CN=Proxy Presence,CN=Azure AD Password Protection,CN=Services,CN=Configuration,DC=xxx,DC=xxx,DC=com

Should it? Any other pointers?

Thanks

ZJORZ posted this 21 January 2019

Re-Register the proxy and forestThen restart the DC agent on some DC (suggested is the DC nearest to the proxy server) Check the SYSVOL for the policy files (in folder “<WHATEVER PATH>\Policies{4A9AB66B-4365-4C2A-996C-58ED9927332D}\AzureADPasswordProtection”) Met Vriendelijke Groeten / Cumprimentos / Kind Regards,Jorge de Almeida Pinto MVP Enterprise Mobility And Security | MCP/MCSE/MCITP/exMCTMVP Profile | Blog | Facebook | Twitter Description: Description: Description: Description: Think Green 

show

Close