We are using NoMAD to handle our AD passwords for our staff on their MBAs. They are instructed to only change their passwords through the NoMAD icon, but of course not everybody can follow simple instructions and they go and change it via OWA. Then the passwords get out of sync and then we get called.
Is there a way to at least tell how they changed their password, is there a log that Jamf can see, can I setup a EA to query when it was last used etc?
I'm a bit surprised to learn that AD doesn't notify JAMF Connect (nee NoMAD) when a new password event replicates (or that JAMF Connect doesn't listen to such replications.) Being able to change a password from the AD side seems fundamental to the use of AD.