ADSelfService Plus 6110 released with an important security fix
Hey there! We are proud to announce that the latest build of ADSelfService Plus 6110, fixes an important vulnerability reported by HaYiCle through our bug bounty program. Security Issue Fix : Fixed the account takeover issue by enforcing SAML signature
Reset Admin Login Requirements
Hello there, I'm currently trying to repair a very broken, old, and undocumented test environment for ADSelfService Plus. When trying to access the admin logon (via /adminLogin.cc), we get the following, even locally on the server it's installed on..
[ManageEngine] Register now for our free ADSelfService Plus Online training series.
Hello, ManageEngine is back again with another series of online workshops to help you make the best use of our integrated password management and single sign-on solution- ADSelfService Plus. This free live online training will be your guide to eliminate
URL for direct searching
Hi I am looking for the syntax to use in the URL to search for a specific user, something like: https://adselfservice/EmployeeSearch.cc?search="Bob" Can you help? Thanks
ADSSP Audio Captcha
Hi, Is there a way to change the langage of the audio captcha ? Even if the browser default langage is French, the audio captcha is in english. Thanks Regards. Anthony
ADSelfService Plus 6109 Hotfix Release
Hello everyone, We are glad to announce the release of build 6109 with the following issue fixes: Issue Fixes : The VPN Group Name field is no longer mandatory while configuring Cisco AnyConnect for updating cached credentials over VPN. The issue that
VPN and 2FA
Hi, I am trying to configure ADSS vpn to enable password sync. We currently are using the Sophos Authenticator with our user VPN and want to use the same VPN for the password sync. Sophos uses OpenVPN and I can configure it to talk to our server, but
ADSelfService Plus now supports Passwordless Login!
Hello everyone, We are glad to announce the release of ADSelfService Plus build 6108 with the following features, enhancements, and issue fixes: Features Passwordless Login: ADSelfService Plus and other SSO-enabled applications can now be accessed using
ADSelfService Plus
ADSelfService Plus Is it possible to reset the password without entering the domain for users outside the organization? Is it possible to reset the password the first time after creating the account based on SMS?
[Online seminar] Tips and tricks to enhance IT security. Register now.
Hello, We are happy to invite you to ManageEngine's Shield Virtual 2021: A Cybersecurity and IAM Online Seminar. Technology evangelists from ManageEngine will explain how you can manage and secure your hybrid Active Directory (AD) environment effectively.
ADSSP cannot identify if user account is moved from one OU to another
ADSSP provides a good feature of Restricting user accounts that are in specific OUs. The schedule scan works fine. But there are situations, an account that was placed in the Restricted OU is moved to another OU which isn't set as restricted in ADSSP.
No language selection option in Change Password & Enrollment process web-page
Hi ManageEngine In the ADSSP web-portal, there is no language option offered for a user to select from during the Change Password & Enrollment page. This is has been noticed and reported earlier through some Support case with ManageEngine technicians.
ADSSP sends Email notification even to excluded OU & its sub-OUs
Hi ADSelfService Plus Team, Enrollment Notification email is setup & configured to be sent to specific OUs in every domain. The OU and sub-OUs which should not be receiving the Enrollment notifications have been excluded in the ADSSP Portal. However,
Password Requirements on Change/Reset Password Pages
Hello - We're in the process of updating the password requirements for the domain we have ADSSP sync'd to (8 to 12 char minimum, 90 day change cycle, etc.). As it sits, the existing page doesn't even match our current policy. We were under the impression
AD Self Service Plus MFA UAC elevation
Could a feature be added the enables a MFA prompt when UAC elevation is triggered? Here is an example of what DUO MFA does: https://help.duo.com/s/article/5806?language=en_US Thank you, Evan Tisher
ADSelfService Plus RemComSvc.exe is detected as a threat
Hello Support. The attached document informs that the exclusion of the RemComSvc.exe executable must be made in the antivirus for the operation of the ADSelfService Plus Agent: However, Trend Micro antivirus from a client company of ours is detecting the RemComSvc.exe file as a threat. For security reasons, our client will not make the exception of the RemComSvc.exe executable. We have the following questions: Why does the ADSelfService Plus agent need the RemComSvc.exe executable? Can the ADSelfService
ADSelfService Plus 6107 released !!!
Hello everyone! We are elated to announce the release of build 6107 with significant new enhancements. Enhancements: The jQuery library used in the product has been updated from version 1.11.3 to 3.5.1. The Bootstrap framework used in the product has
Auto User Creation - API
Hello there! ADSS is able to auto create users (quick enrollment) with some options, but they are not really quick. So I've request for a feature to allow using some API/script to enroll users. In our environment, we use a script to create the user in
[ManageEngine] Register now for our free ADSelfService Plus Online training series.
Hello, ManageEngine is back again with another series of online workshops to help you make the best use of our integrated password management and single sign-on solution- ADSelfService Plus. This free live online training will be your guide to eliminate
AD SelfService Plus with MSA
Hello, We have already deployed AD Selfservice PLUS and it is running as a service using a local account on our server. We were trying to maintain security by migrating the service to use an MSA for password resets rather then using a generic service
SelfService App XML?
Hi, We are pushing out iPads to a number of mobile users and want to have the AD Self Service Mobile App installed on each device through our MDM application catalog. In addition we want to make sure the app is deployed pre-configured with the server settings already set so there is no user setup required. Is that do-able? XML config possibly? Best Regards, Brian Mansfield
ADSelfService Plus 6105 released !!!
Hello Everyone! We are glad to announce the release of build 6105 with significant new enhancements and issue fixes. Enhancements: Admins can now configure users' managers email addresses to send them notifications about user activities like self-service
Problem with installation of new ssl certificate
Hello there, I have a problem with the installation of a new SSL certificate to my ADselfservice system. Details below: csr has been generated via web tool (Admin-connection- Generate Certificate) Csr sent to CA authority - DigiCert DigiCert sent me two
INVALID_CSRF error during reset password
Hi, When I want to reset password in web page, I get this error: INVALID_CSRF_TOKEN ADSSP version: v6.0.05 DB: MS SQL I attached my screenshot. What should I do? Thanks for helping
ADSelfService Plus 6104 released with an important security fixes
Hello everyone, We are glad to announce the release of build 6104 with the following vulnerability issue fixes: Vulnerability issue fixes: A vulnerability that in rare cases allowed bypassing CAPTCHA in the ADSelfService Plus login page has been fixed.
Mail / SMS Server Settings
new to the product and in process setting up. Configuring the Mail settings using an external SMTP sever that requires SSL connection. Use same config on our backup software to alert me of backup status. Each time I enter the credentials and click save
Password complexity by number of character types
A password requirement that specifies the number of character types, rather than the number of characters of a type, would be a nice addition. For example, if you specify that there must be 3 different character types, then "Password!" would be allowed
ADSSP Free limitation
Hi, I use the ADSSP Free version to notify password expiration. It works great for 2 subscriptions, but i made a new one recently link on a group, and no mail are sent. Is there a limitation of number of subscription or on the number of users in the free
Hot to redirect HTTP to HTTPS
Hi, my adselfservice page is working on HTTPS port, and everything is working if I go to https://FQDN but if I go to http://FQDN then page is blank. Is any way to auto-redirect on adselfservice to automatically redirect to HTTPS? thanks
If service stop working what happend?
Hello, I installed ADSelfService Plus to the customer server and starts as service. Some time happned that the web console is down and I´ve looked to the service is not running (is setup for automatic startup). If I start MFA endpoind protection with
ADSelfService Plus 6103 released !!!
Hello Everyone! We are glad to announce the release of build 6103 with significant new features and enhancements. Highlight: Zoho OneAuth's OTP authenticator can be used as an MFA method to verify users' identities during password reset and account unlock
Admin activity logs feature/functionality missing in ADSSP portal
Since multiple Admins can be granted access to the ADSSP portal, it is imperative to have the ability to trace Admins activity for any kind of changes made to or in the ADSSP application. However, this feature/functionality is missing in previous builds
Mobile App vulnerability
Adding to the vulnerability reported in https://pitstop.manageengine.com/portal/en/community/topic/adssp-mobile-app-does-not-follow-the-mfa-for-reset-unlock The enabled setting: Self-Service > Multi-factor Authentication > MFA for Reset/Unlock > MFA for ADSelfService Plus Login When using Change Password on the Web-browser of a laptop/desktop, this bring a MFA option to go through which is good and needed. However, when performing Change Password from the mobile app, there is No MFA requested..
Users unable to change passwords
We have just started evaluating ADSelfService and are running into an issue where test users that have registered are unable to change their password under the Self Service tab. It lists "Domain Password Policy requirements" (which our test domain has NONE) I have also set the password strength level within the ADSelfService app to "Too short" yet still, no matter what password we change it always fails with this error: Change Password Failed The new password you chose failed to meet any or all
ADSSP Mobile App does not follow the MFA for Reset / Unlock
In recent days the mobile app for ADSSP has changed some of the functionality. One security risk which i noted is the MFA for Reset / Unlock entered in the Admin portal. We have our MFA for Reset / Unlock enabled to 3 factor authentication for reset / unlock operations. However, when performing Password Reset and/or Unlock account from the ADSSP mobile app, it doesn't follow the entered setting. It just proceeds after just 1 factor of authentication instead of the entered 3. when performing the
Issue with HA working in Build 6100
And another classic buggy application build from ManageEngine. The latest build 6100 seems to be filled with issues with every configuration being done. Configured HA in ADSSP, however it doesn't seem to work as it should Ticket #4069482 has been opened
WAF Alerts for Excesive use of Special Characters
Hello, Recently we have ADSelfservice Plus tool published in a Azure Gateway and if the enable there the WAF the notice the following rules issues. Detects basic SQL authentication bypass attempts 2/3 o Matched Data: \":10,\"T found within ARGS:NAVIGATION_DETAILS:
Yet another MAJOR BUG in ADSSP
Ticket # 4272254 raised with ManageEngine for this. Even though the settings in the ADSSP Admin portal is set to "Deny users from performing password reset/account unlock when partially enrolled", if a user has not enrolled but attempts to Reset Password
Change database IP in ADSS without configure again
Hi, We use SQL for ADSS in another server, and we are changing the IP in few weeks. Is there any way to change only the SQL server IP and not configure again the database in ADSS which doesn't permit to configure the same database name. Regards,
ManageEngine ADSelfService Plus service not starting
I am receiving the following when trying to start the service. Please advise on how to resolve this issue. Thank you, Dan
Next Page