Update howto-identity-protection-configure-risk-policies.md

cuixi1222 · web-flow · commit f9041b4be535 · 2023-01-30T14:36:54.000+11:00
diff --git a/articles/active-directory/identity-protection/howto-identity-protection-configure-risk-policies.md b/articles/active-directory/identity-protection/howto-identity-protection-configure-risk-policies.md
@@ -37,7 +37,7 @@ Configured trusted [network locations](../conditional-access/location-condition.
 Organizations can choose to block access when risk is detected. Blocking sometimes stops legitimate users from doing what they need to. A better solution is to allow self-remediation using Azure AD multifactor authentication (MFA) and secure password change.
 
 > [!WARNING]
-> Users must register for Azure AD MFA and password writeback before they face a situation requiring remediation. Users not registered are blocked and require administrator intervention.
+> Users must register for Azure AD MFA before they face a situation requiring remediation.For hybrid users that are synced from on-premises to cloud, password writeback must have been enabled on them. Users not registered are blocked and require administrator intervention.
 > 
 > Password change (I know my password and want to change it to something new) outside of the risky user policy remediation flow does not meet the requirement for secure password change.
 

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ Configured trusted [network locations](../conditional-access/location-condition.`
`37`	`37`	`Organizations can choose to block access when risk is detected. Blocking sometimes stops legitimate users from doing what they need to. A better solution is to allow self-remediation using Azure AD multifactor authentication (MFA) and secure password change.`
`38`	`38`
`39`	`39`	`> [!WARNING]`
`40`		`-> Users must register for Azure AD MFA and password writeback before they face a situation requiring remediation. Users not registered are blocked and require administrator intervention.`
	`40`	`+> Users must register for Azure AD MFA before they face a situation requiring remediation.For hybrid users that are synced from on-premises to cloud, password writeback must have been enabled on them. Users not registered are blocked and require administrator intervention.`
`41`	`41`	`>`
`42`	`42`	`> Password change (I know my password and want to change it to something new) outside of the risky user policy remediation flow does not meet the requirement for secure password change.`
`43`	`43`