![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 31%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,237 questions
Hi @testuser7-8288,
Yes, Administrator can reset the password of end user from Azure AD Portal and that will be written back to On-premises Active Directory as well. This will also select the "User must change password at next logon" in properties of the user account in On-premises AD.
However, if you have selected "Password never expire" checkbox for the user, in that case "User must change password at next logon" won't get selected.
Administrators can also use below graph call for this purpose:
Call: POST https://graph.microsoft.com/beta/users/user's_object_id/authentication/passwordMethods/password_method_id/resetPassword
Body: {"newPassword":"P@$$w0rd","forceChangePasswordNextSignIn":true}
You can get password_method_id by using below call:
GET https://graph.microsoft.com/beta/users/user's_object_id/authentication/passwordMethods
Read more about these graph calls here: https://learn.microsoft.com/en-us/graph/api/passwordauthenticationmethod-resetpassword?view=graph-rest-beta&tabs=http
Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.
