Azure AD Connect - chadmcox/Azure_Active_Directory GitHub Wiki

#Azure AD Connect

Change the AD Sync Account to a Group Managed Service Account.

Password Writeback

Enable Azure Active Directory self-service password reset writeback to an on-premises environment

Notes

Expired Accounts in on-premise AD, does not get disabled in Azure AD.