We are required to configure SSPR enforcing all domain password policies, including ‘Password History’ and ‘Minimum Password Age’; without
configuring LDAP over SSL connection (without certificates) between the FIM Synchronization Service and PDC Emulator role owner.
There is a hotfix which enables FIM SSPR to support enforcement of all domain password policies but that requires configuration of LDAP over SSL connection between the FIM Synchronization
Service and PDC Emulator role owner, which is conflicting with design and operational requirements.
Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.