
bzsiq (bzsiq) asked a question.
Two questions related to password changes completed in Okta (with AD still the source via Delegated Authentication):
- Will there be password change Windows event logs (4723 or 4724) on Domain Controllers for these, as if they were performed directly via ctrl+alt+del?
- Will these passwords change be processed against any AD password policy requirements including those set be custom password filter .dlls?
Thanks!

You have option to enable evet logs thats mostly windows feature -
Enable Kerberos event logging. For more information, see https://support.microsoft.com/en-us/help/262177/how-to-enable-kerberos-event-logging.
Also, which delegated authentication type you are using i.e. agent less or agent based. In both case you can get the events and can apply AD password policies.