- Requires a one-time password change.
- Microsoft requires that passwords be sent to a domain in cleartext so that it can handle the hashing, and we don't keep cleartext passwords.
- As UHIMS encounters password creation and password change events it will synchronize passwords with the Central AD Authentication Service.
- We will initialize synchronize all Active Directory entries with random passwords.
- UH Usernames created before 4/10/23 13 will have to perform a one-time password change in order to use Microsoft services that federate authentication against this Central AD Authentication Service.
- This new service is being piloted by one of our campuses. From that experience we hope to obtain recommendations and experiences that we can then publish for others to utilize.
|