We recently encountered sync errors for our AD driver set in IDM, when checking password status all users have a sync error 9006

Subscriber status log as well has the following message outputted for many users

<status event-id="pwd-subscribe" level="error" type="driver-general">Could not set password via platform call. Err=2245 (password invalid)<operation-data>
<password-subscribe-status>
<association>6ba5f61706e78342b87209529cda5903</association>
</password-subscribe-status>
</operation-data>
<application>DirXML</application>
<module>Active Directory</module>
<object-dn>\NYM\nym\MTA-Users\CPhilip</object-dn>
<component>Subscriber</component>
</status>

I'd greatly like to get feed back on possible root causes as I don't have very much reference or experience with troubleshooting Identity Manager.