Office 365 ignores expired accounts and continues to allow access

azure microsoft-office-365
5,472

In addition to the link provided by @joeqwerty there are a couple methods I've used.

PowerShell script that runs and checks for expired accounts or passwords, where users are found, it will then connect to Office365 and block sign-in for these accounts. [Update] if you have SSPR enabled, instead of blocking the account, you can just reset the account password to a random complex password. This way the user then can reset it local (via standard AD sync up), or from SSPR portal.

Most recently, however, we have been using AzureAD Connect Passthrough. This moves authentication back to your domain controllers. With this in place, all your account actions are honored. It's incredibly easy to setup with synced accounts. You can pair this with AzureAD Connect Seamless Sign on which allows AzureAD to use Kerberos tickets for better user experience for your users when they are in the office or on VPN.

Share:
5,472

Related videos on Youtube

Admin
Author by

Admin

Updated on September 18, 2022

Comments

  • Admin
    Admin almost 2 years

    We have several accounts for long term substitutes that are created with an expiration date on their account. We currently use Office 365 with ADConnect to sync the AD accounts.

    The issue that I have found is that Office 365 ignores the accountExpires attribute and continues to allow access. The only way to stop access is to delete or disable the account. I've talked to Microsoft and they have said there are no plans to address it.

    Has anyone else experienced this and found a workaround?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Moving active directory / domain controller from on-premises to Azure
Field to add employee ID in Azure AD/Office365
Azure AD Connect Import
Remove certain AD Sync from Azure AD Sync
E-mail aliases don't seem to sync with Office 365 using Azure AD Connect
Azure print server - running everything in Azure?
The specified module 'MSOnline' was not loaded because no valid module file was found in any module directory
Can I use Office365 or Azure AD as master record for Active Directory?
Azure build error: "Android Gradle plugin requires Java 11 to run. You are currently using Java 1.8"
how to get user profile with azure ad in flutter