Samiul (admin)I.99796 (Customer) asked a question.
Hi All,
The process we have is automated. So basically users are onboarded from HR to Okta and then feeds into AD. All the new onboards are stuck in task page and as a workaround we have to push the accounts manually so that they can sync to AD. The error is saying password policy is not being met. Below error shows up.
Error updating active_directory user password: The password does not meet the password policy requirements. Check the minimum password length, password complexity and password history requirements.
As far as I know no changes was made in Okta and AD. We also cross check the password policy in AD and Okta and it matches.
Is anyone aware of this issue or can suggest something?
Hi @Samiul (admin)I.99796 (Customer) , Thank you for reaching out to the Okta Community!
If you have doublechecked the policies and confirmed that the Password Policy configured on the Okta side is as least as complex as the AD one, you will need to confirm that the password does not use any character that might not be supported in AD.
If you have multiple Okta Password policies configured, you will need to confirm that the appropriate one is assigned to the affected user(s).
Although I don’t think this applies to your current use case, you can also take a look at the following articles for additional insight:
https://support.okta.com/help/s/article/password-updating-in-active-directory-even-though-the-password-does-not-meet-the-okta-requirements?language=en_US
https://support.okta.com/help/s/article/Provisioning-users-to-an-application-fails-because-of-password-complexity?language=en_US
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope my answer helps!
--------------------------------
Ask the experts about Okta Privileged Access