When attempting to generate a password, the following error is returned:
Cannot generate unique User Password (edsaPassword) using configured rules. Enter this value manually.
Make sure the service account has read access to the following container in Active Directory:
Update the password generation script to the latest version. The latest version of the script will gracefully bypass the fine-grained password policy check if it's not accessible and will write an event log entry instead of failing. The latest version of the password generation script can be found in Solution Article: 296930.