Azure Federation - changing passwords in Microsoft Domain not reflected in Shared iPad

New Contributor

We have a shared iPad environment built on Apple Business Manager with Azure AD Federation to an on-premise Active Directory domain.  When users change their passwords in the Microsoft environment they are unable to login with the new password on their shared iPads.  They can login using the password that was in force when they logged in for the first time they access one of the shared iPads.

We have confirmed password changes are enforced in Azure so the federation is working between the on-premise and cloud domains.

Is ABM/Azure Federation/Shared iPad working as designed or do we have a configuration error that is preventing the updated password from being enforced for logins to the Shared iPads?