![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 62%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 61%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHP%3C/text%3E%3C/svg%3E)
Dear Joe,
Based on your description, the password reset on your local Domain Controller (DC) was successful, but the user is unable to log in to Microsoft 365, and the account appears locked in the cloud despite showing active in your local AD.
I recommend to:
- Verify Azure AD Sync Status Open the Azure AD Connect tool and confirm that the last sync was successful. You can also run: Code Start-ADSyncSyncCycle -PolicyType Delta in PowerShell to manually trigger a sync.
- Check Microsoft 365 Account Status Sign in to the Microsoft 365 Admin Center. Navigate to Users > Active Users, locate the affected account, and check for any lockout or sign-in issues.
- Unlock the Account (if applicable) If the account is locked in Microsoft 365, you can manually unlock it or wait for the lockout duration to expire.
- Confirm Password Sync Ensure that password writeback is enabled in Azure AD Connect if you're using hybrid identity.
If this guidance proves helpful, feel free to click “Accept Answer” so we know we’re heading in the right direction 😊. And of course, I’m here if you need further clarification or support.
T&B, Harry.