Feature Request : Backup cleanup task
This product unlike most of the others ME produces does not seem to have a cleanup task for old backups or a setting to set the number of days to keep. I would like to see this added to the product as it helps keep everything clean and automates the cleanup process.
ADSelfService Plus build 6301 offers several enhancements and issue fixes
Hello Everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6301. Enhancements macOS Ventura is now supported by the macOS Login Agent. A user belonging to multiple domains can now use the same YubiKey device for authentication.
Implement MFA for Outlook client
My company sees the implementation of MFA for OWA/ECP as a very positive step, and I highly appreciate this initiative. However, MFA has not been enabled for the Outlook client yet. I suggest that the Admin add MFA feature for Outlook as well to enhance
Request add more method for support 2FA
1. Mobile Authenticator of ADselfservice or 3rd party 2. Multi-protocol security key such as yubikey by yubico | https://www.yubico.com/products/yubikey-hardware/ 3. FIDO2 for passwordless authnticate https://fidoalliance.org/fido2/ Thank you for build great app and great support.
Remcom.exe flagged as malicious
Dear Support Team, our AV solution flagged Remcom.exe from version 6101 as malicious - PUA Application.RemoteAdmin.RLH. A VirusTotal scan shows that this is not an exception: https://www.virustotal.com/gui/file/d7a923357aea4f9d4e65d43d3f800fa4f3b766a825be63d798f5ff35721a462a/detection
Password complexity by number of character types
A password requirement that specifies the number of character types, rather than the number of characters of a type, would be a nice addition. For example, if you specify that there must be 3 different character types, then "Password!" would be allowed
Change the password through ADSelfservice to synchronize the new password to the laptop
When employees are outside the company and cannot access the company network (no VPN service, etc.) But the password expired due to the policy. He can change his password through ADSelfservice (web), but the password cannot be synchronized to his laptop
[Online seminar] Tips and tricks to enhance IT security. Register now.
Hello, We are thrilled to send you this exclusive invite to be a part of Shield 2023: An IAM and Cybersecurity Online seminar on May 30. Our senior technology evangelists will be sharing their thoughts on how you can better manage, monitor, and audit
Endpoint MFA Licensing
When did the Licensing change happen i have 2000-user Professional edition licenses which had an endpoint MFA enabled and active,now suddenly you are asking money for endpoint mfa as an addon.
PGSQL in Linxu Server
Hy community ! It's possible to use database PGSQL in Linux server to connect ADSelfservice ?
Problem with Windows MFA in combination with Remote DesktopApp
Good day together Thank you in advance for your support. Initial situation: - We are currently testing the MFA for endpoints for access to a terminal server. - Server 2019 environment (domain controller, terminal server, etc.). Problem: - Application
How to dis-enroll disabled user from ADSSP
Hello Team, As per GDPR policies, it is not permissible to delete users from AD upon their exit; they must only be disabled. However, once a user has been disabled from AD, they are not automatically removed from the AD Self-Service portal. Would it be
Connect two domains
Hello Together We have two domains that we manage. Is it possible to manage either both domains with one ADSelfService Plus instance for password reset. Or is it possible to run two instances on one server? One domain is local to us and the other is accessed
Two domains morphed
Hello Together We have two domains that we manage. Is it possible to manage either both domains with one ADSelfService Plus instance for password reset. Or is it possible to run two instances on one server? One domain is local to us and the other is accessed
What is the Admin URL if you have removed the admin login from the login page
I thought it was http://hostname:port-no/AdminLogin.cc. When I flesh that out with my hostname and port number I ge the following. Sorry ! You are not authorized to view the contents of this file. Back | Sign Out
Authenticator Mobile App - approve/deny from notification panel/lock screen + machine name
Can your development team look at adding Approve/Deny functionality directly from the lockscreen, similar to what Microsoft, Google, and Duo authenticator do? It will be much more useful than having to tap the notification or unlock the phone and open
ADSSP - Partially Enrolled vs Enrolled Users
How is it determined whether a user is partially enrolled versus fully enrolled in ADSelfservice Plus? I was told before that it has something to do with the number or enrolled MFA auth app compared to the offered configured MFA auth apps. Is there any
Microsoft Exchange Online as mail delivery system (OAuth 2.0)
Nowadays is very common to see organizations using Microsoft Exchange Online as their mail delivery system and I think ADSelfService Plus should be able to accept it as a valid email configuration setting. Right now the only option that the mail settings
Offline MFA protection now available with ADSelfService Plus build 6300
Hello Everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6300. Feature Offline MFA protection for the remote workforce: Logging into Windows machines, RDP machine logons, and UAC elevation prompts that require credentials
[ ManageEngine ] - Our IAM and cybersecurity seminars are back in Riyadh and Jeddah
Hello, We are thrilled to send you this exclusive invite to be a part of Shield 2023: An IAM and cybersecurity seminar in Riyadh on June 5 and Jeddah on June 7. Our senior technology evangelists will be sharing their thoughts on how you can better manage,
[ ManageEngine ] - Our IAM and cybersecurity seminars are back in Sydney and Melbourne
Hello, We are thrilled to send you this exclusive invite to be a part of Shield 2023: An IAM and cybersecurity seminar in Sydney on June 13 and Melbourne on June 15. Our senior technology evangelists will be sharing their thoughts on how you can better
Another key is configured for this DC already.Delete the key from the Product and try again.
I reinstalled the password sync agent on domain controller and now service will not start. below is error. I'm not sure where and what it wants me to delete. The error below is fromt the Service_Exceptions file, after trying to start the service. [4/20/2023
Your exclusive invite to our IAM and Cybersecurity seminars in London and Dublin.
Hello! We are thrilled to send you this exclusive invite to be a part of our IAM and Cybersecurity seminars in London on April 18and Dublin on April 27. Our senior technology evangelists will be sharing their thoughts on how you can better manage, monitor,
Backup Files Publicly Accessible
I scanned our systems with intruder.io, one of the "issues" if found was related to backup files being publicly accessible. How would I prevent these files from being "seen" through the web interface. I have attached the scan information to show the relative
How to auto redirect HTTP to HTTPS
Hi, is any way in ADSelfService Plus 6.2 to auto redirect http to https 443 ? because when enter own address I have blank screen, I had to every time add at the beginning https:// Thanks.
ADSelfService Plus' build 6221 now released with enhancements and issue fixes.
Hey everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6221. Enhancements The Single Sign-On and MFA modules now include options to encrypt the SAML assertion and choose between a signed or unsigned SAML request and response
ADSelf Service Plus HA
Hello, I have configured ADSelfService Plus on two separate servers. Both are 64 bit, 6220 build, and using same MS SQL Database. When I'm trying to configure HA I'm getting error: Settings not saved. High Availability cannot be enabled between two different
Database for High Availability
Hello everyone, We're in the process of setting up High Availbility for our instance and we're thinking about migrating from Postgress to SQL. The question is if we can user SQL express instead of the Standard version. Thanks in advance.
Multiple MFA Providers for ENDPOINT VPN
Currently we can only select one method for endpoint VPN, i.e either Microsoft Authenticator or Google one or RSA etc. We want to give users privilege to be able to use any of the enabled MFA methods.
Endpoint MFA missing from Free Edition after upgrade from 6112 to 6220?
We have successfully been using AD Self Service Plus build 6112 for about a year and a half, strictly for MFA Machine login via MS Authenticator or Security questions. We were preparing to move ADSSP to a new server, but first I needed to update ADSSP
Delivery status report for password/account expiration notifications
I'm getting daily emails titled "Delivery status report for password/account expiration notifications" with the message: "Dear Admin, No reports available at the moment for the configured scheduler." How can I make report send when only there is account
ADSelfService Plus' build 6220 now released with issue fixes
Hey everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6220. Issue Fixes: An authentication issue involving partially enrolled users has now been fixed. An issue in the Windows Login Agent which prevented users from accessing
can I put the adselfservice site under a virtual directory?
Hi, We're using AD Self Service, and were wondering if there's a way to make the access url under a virtual directory? For instance, instead of it being just https://hostname:9251/, it would be: https://hostname:9251/directory/ So that all the app pages
ADSelfService Plus' build 6219 now released with issue fixes
Hey everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6219. Issue Fixes: An issue where the Force Enrollment using Logon Script configuration would fail when the Window Title exceeded 50 characters has now been fixed.
Windows 10 Logon Script issue
Good Day, I have an issue with windows 10 and the force enrollment logon script. To get the script to run in windows 10, I changed the following code: <head><meta http-equiv="X-UA-Compatible" content="IE=EmulateIE9;IE8;IE7,Edge"/> to: <head><meta http-equiv="X-UA-Compatible" content="IE=EmulateIE11;IE10;IE9;IE8;IE7,Edge"/> This allows the script to run in Windows 10 but now when the script starts it starts minimized on all Windows OS's. Is their a way to get this script to work as intended.
[Tips & Tricks] Blacklist passwords using ADSelfService Plus
With the rise in number of enterprise applications, it can be relatively easy for users to fall into the habit of using passwords like ‘Password@123’. This password complies with several password hardening measures and satisfies the Windows Active Directory password complexity requirements as well. However, it can be easily cracked by means of a dictionary attack. ADSelfService Plus secures passwords from sophisticated password attacks by disallowing users from using commonly used passwords, patterns,
Tomcat vulnerabilities
Hi there, Endpoint Central shows multiple vulnerabilities in Apache Tomcat (version 8.5.57) in our installation of AD SSP (version 6.1 build 6123). I realize that there several newer releases of AD SSP available, but according to the release notes, Tomcat
Endpoint MFA user vs machine
I have separate policies made for domain admins and everyone else. I want to require endpoint MFA logins only for domain admins on any machine with the agent installed. Is this possible? My tests seem to indicate that it's all users or nothing.
ADSelfService Plus' build 6218 now released with technician management enhancements
Hey everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6218. Enhancements The Enrolled Users Report now allows administrators to view the authenticators users have enrolled for and disenroll them from specific authenticators,
ADSelfService Password Policy vs. AD Password Policy via GPO
Hi, we already own the product and it works nicely, but we don't use some of the features. I'm interested in the password policy features, but what if we already have AD Password Policies configured via GPO? Would the idea be to remove the GPO policies
Next Page