Kerberos authentication support.
Dear ManageEngine Team, We recently started utilizing Protected Users for a select group of privileged accounts (as outlined by Microsoft here). However, we have observed that these users are unable to log in to AD Self Service Plus to reset their passwords.
RDP Session with GINA Client freezes in Windows to blue background and "please wait".
Hello, we have Windows Servers with the GINA Client to secure it with MFA at the Windows login. When i make RDP and enter my code everything works fine. But when i lock my host computer, from where i started RDP Session and come back and unlock it, very
ADSelfService Plus 6519 enhances security with important issue fixes!
Hello Everyone, ADSelfService Plus' latest build, 6519, has been released with the following updates: Issue fixes A critical security vulnerability (CVE-2025-11250) has been identified and resolved. An issue where enrollment for Duo Authenticator through
SMS Gateway not working
Hello, I am trying ADSelf Service for my company as a reset tool for our employees , one of the important features that I need is to reset password through SMS , so I contacted my Service provider to send me API access to send SMS in our company name
Unabled to log in as admin
I've initially logged in as admin, and changed the password. Now I can no longer log in, it says "Invalid loginName/password. Please try again."
FIDO2 and PIN prompts
Hi, Can you confirm if this is expected behaviour and if so, can I change it? I have a policy setup to allow the use of FIDO2 keys (YubiKeys). When the user first logs into ADSS he is asked to register his key, he enters his PIN, touches the key and everything
Remcom.exe flagged as malicious
Dear Support Team, our AV solution flagged Remcom.exe from version 6101 as malicious - PUA Application.RemoteAdmin.RLH. A VirusTotal scan shows that this is not an exception: https://www.virustotal.com/gui/file/d7a923357aea4f9d4e65d43d3f800fa4f3b766a825be63d798f5ff35721a462a/detection
ADSelfService Plus 6518 delivers stronger security, performance improvements, and issue fixes!
Hello Everyone, ADSelfService Plus' latest build, 6518, has been released with the following updates: Enhancements ● The Tomcat version used in the product has been updated to 9.0.109. ● ADSelfService Plus now supports PKCE (Proof Key for Code Exchange)
Why ManageEngine forcing customers to purchase JESPA.jar?
Hi everyone. According to this article ... https://www.manageengine.com/products/self-service-password/help/admin-guide/Admin/sso-settings.html Installation with version's above 6210, need a third party commercial jar library from ioplex (jespa.jar) to
You’re invited – ShieldNXG Workshop 2025 (USA) | Hands-on cybersecurity experience
Hello, We are delighted to invite you to our upcoming ShieldNXG Workshop 2025 – USA. This event is designed for IT experts and focuses on advancing identity management and strengthening cybersecurity practices. Guided by experienced IAM and SIEM specialists,
[ManageEngine Cybersecurity Seminar] You’re invited: Reserve your passes today!
Hello, We’re pleased to invite you to our upcoming IAM and Cybersecurity Seminar in Austria. This in-person session is designed for IT and security professionals looking to sharpen their identity and threat defence strategies. What to Expect: • Live Cyberattack
[Webinar Alert]: Hacks can start from password reset requests
| FREE WEBINAR Click. Reset. Secure: Simplifying Identity Security for the Modern Workforce Register now September 10 at 11 AM EDT September 11 at 2 PM AEST | 02 PM GST Do you know that in 2025, 88% of cyberattacks involved stolen credentials? You might
[ManageEngine Cybersecurity Seminar] You’re invited: Reserve your passes today!
Hello, We’re pleased to invite you to our upcoming IAM and Cybersecurity Seminar in Austria. This in-person session is designed for IT and security professionals looking to sharpen their identity and threat defence strategies. What to Expect: • Live Cyberattack
"Connection to Server Failed. Error 400 error." when accessing ADSelfService Plus desktop site.
Currently I am experiencing "Connection to Server Failed. Error 400 error." only when I access the desktop site. The mobile site runs normally. The topology is as follows: User -> Reverse Proxy (NGINX) -> ADSelfService Plus Server. I have installed the
Machine MFA Prompts
Hi, Would it be possible to skip the first couple of windows that appear when using MFA at Windows login? For example, at the moment the user enters their normal Windows password and then prompt saying they need to use a security key, they click continue
Soon-to-expire Account Users Report to Manager shows only one User
Hi there, we have noticed that since version 6513/6514 in the scheduled reports of "Soon-to-expire Account Users" send to the managers of the users only show one user in the file attached to the mail, although there are often multiple user soon to expire
Link expire macro
Does the %linkExpireTime% macro still work? It doesn't show in the list of macros and I put it in my email message and nothing comes through. I'm running build 6515. Also, is there a way to change how long the code is valid?
Ctrl + Alt + Del in RDP
Hello, Ctrl + Alt + End (equivalent to Ctrl + Alt + Del) to change password on RDP will bypass the password policy enforcer even though the client is installed on the remote PC. If I am physically in the office with the PC then Ctrl + Alt + Del to change
Revert do free license
Hi, If I have paid annual license for adselfservice plus, it is possible to revert back licensing to have free version (50 users), or do I need to reinstall the product from the scratch ? Thanks.
ADSelfService Plus 6517 offers FIDO2 Passkeys support for machine logins!
Hello Everyone, ADSelfService Plus' latest build, 6517, has been released with the following updates: Feature FIDO2 Passkeys support for machine logins : FIDO2 Passkeys can now be used as an MFA method for logins to Windows, macOS (including offline MFA),
High Availability
When we purchased ADSelfService Plus a year ago, we were advised that in an upcoming release, we would be able to have two servers running in High Availability in different subnets. I see this still isn't available, when will this be available?
Join us at Shield NxG 2025: An IAM and Cybersercurity Seminar, Australia
Hello, We’re pleased to invite you to our upcoming Shield NxG 2025 - an exclusive IAM and Cybersecurity Seminar happening in cities near you. This in-person session is designed for IT and security professionals looking to sharpen their identity and threat
ADSS and Intune
Hi, I was looking to deploy the ADSS mobile app via our Intune enviroment. Is it possible to preconfigure the apps settings this way and if so do you have a guide somewhere I can follow? Hoping to do this for both Android and iOS. Thanks James
[ManageEngine] The One Seminar Your Security Team Shouldn't Miss
Hello, We’re pleased to invite you to our upcoming IAM and Cybersecurity Seminar in Auckland. This in-person session is designed for IT and security professionals looking to sharpen their identity and threat defence strategies. What to Expect: • Live
SAML and Multiple Domains
Hi, I'm looking to setup ADSS as a SAML server for Password Manager Pro but have a question. We have 2 domains, there is no trust relationsip between them so curently users need to pick the domain they're logging into. Is there anything special we need
Support for Ubuntu LTS 22.04 and/or 24.04?
With the latest update supporting Centos 8/9, is there an ETA for when support for Ubuntu (and by extension other Ubuntu-based flavors) beyond the current supported version of 20.04 LTS will come? This version of Ubuntu is reaching end-of-life and will
License question
Hi, I have a question about licenses: -does the annual license is always with support AMS included, i.e., are there annual licenses that are cheaper but without support? -in the case of purchase of a perpetual license, what happens if after a year you
Notification for failed password change
Hi, is any way to set notification for admin if user failed to change their password no matter of reason? I see only notification if user change password successfully. How to do that?
Secure Your Spot at ManageEngine's SHIELD - CyberDefence in Manchester and London: Where Cricket Meets Cybersecurity
United Kingdom's First Shield Cyberdefence Hello, We're thrilled to invite you to "SHIELD - Cyberdefence," a one-of-a-kind symposium where cricket meets cybersecurity, conducted by ManageEngine! This is an exciting opportunity to learn how cutting-edge
How can I reset a specific user's MFA within the admin console?
How can I reset a specific user's MFA within the admin console?
Error Code MFA-041
Hi, Every once in a while we get a users complaining they can't login to their Windows device getting error code MFA-041, typically this is when they are working remotley and not connected to our VPN. I'm able to gte round this by issuing an uninstall
Back to Home link question
I saw there was a question 5 years ago about this, so I was wondering if there was an update on it. Is it possible to change the 'Back to Home' link after resetting the password?
Language MFA Offline
Currently, I don't see the feature to modify the language for MFA Offline. I think this is a great idea to optimize the language for users. I sincerely hope this will be implemented as an essential feature for you to develop
ADSelfSevice Plus 6514 supports MFA for popular Red Hat RHEL distributions
Hello Everyone, ADSelfService Plus' latest build, 6514, has been released with the following enhancements and bug fixes: Enhancements ADSelfService Plus now supports MFA for logins to Red Hat (versions 8.x to 9.x) and Rocky Linux (versions 8.x to 9.x)
How to install digicert wildcard .cer
I've obtained the .cer file from Digicert but dont know what commands or where to go with a Digicert wildcard cert as it's not listed under the CA's on your SSL .pdf.
LDAPS
Hello, I want to configure my 389 Directory Server connector to use "LDAP SSL", how can I import the certificate of the remote LDAP Server ? Thanks
Passwordless MFA Windows
I've heard that ManageEngine technicians are currently implementing the Passwordless MFA feature for Windows and MacOS. Please let us know the estimated release time for the update with this feature, as many businesses in Vietnam are eagerly awaiting
How to keep the agent up to date?
Hi, What's the best method for keeping the agent up to date on client devices? At the moment I'm going into ADSS, selecting as many as possible and pressing the re-install button but we're limited to selecting 100 at a time. I was thinking doing it via
ADSelfService Plus 6515 offers security and performance updates!
Hello Everyone, ADSelfService Plus' latest build, 6515, has been released with the following updates: Enhancements 1Kosmos is now supported as an Identity Provider for both SSO and SAML MFA configurations. Learn more The Tomcat version has been upgraded
License count discrepancy
I was getting ready to disable stale users to free up licenses when I noticed that there is a huge discrepancy between exported report of licensed users and the license consumption as displayed when I click the License Info dropdown menu. In my case,
Next Page