Single Sign-On Saml login
Hi, I would like to configure single sign-on to be able to start an external application. I have a question about this. Is it possible to open an application directly with a link in the browser, or does the application always have to be started via ADSelfServie
cached credentials for remote user's PC
Hello All, With the pandemic that enforce organizations to let their employees work from home, digitization played the most important role to facilitate organizations to achieve their goals. As a result, we have all touch the challenges and benefits from digitization, specialty if the orgnization is not ready to adopt remote working or telecommuters. Thus, when it comes to access management, through reset password or unlock accounts the ADSelf service was very beneficial to reduce the cost and operation
Disable Endpoint MFA for certain workstations or OUs
Does AD SSP currently have the ability to restrict which computers or OUs endpoint MFA is enabled on? We currently have a subset of workstations that use a group password, a few different ones in fact that are restricted to certain group of computers. I would like to be able to exclude those systems from MFA while enabling it for the rest of our environment. Thanks, Kenny
Hide mobile number selection stage when one mobile number is set
Hi, I need to decrease stage of Password Reset. I wanna to hide mobile number selection stage. What should I do? Thanks for helping
Use another domain attribute instead of username for reset password
Hi, Sometimes our user forget username. I wanna to set another domain attribute (like Employee ID) instead of username. What should I do? Thanks for helping
Implement AD Account expiry date notification
Is it possible to add notification for AD accounts (not their passwords) that are going to expire? It would be nice to be able to automatically send notification to users who's account is going to expiry let's say in 30 days.
Report on all domains
Hi, Is it possible to easily report on all domains rather than one-by-one? need to extract: Total number of enrolled users All time AD unlocks All time AD password reset Thanks, John
Background Colour varies behind the logo
Previously, I uploaded a PNG logo with a transparent background and it worked great. With a recent update the banner background colour changed to a dark grey and my logo looks like rubbish. I would update my logo to work with the darker background but the logon page will has a light background - I don't have a logo that will work in both situations. This is from our logon page: And this is the same logo after logging in: I'd like to see the banner background colour consistent - and ideally customisable.
Google vs. Microsoft Authenticator
Is there anyway to change the title of "Google Authenticator" to just say "Authenticator App"? I have tested this and both the Google and Microsoft Authenticator apps can be used interchangeably. Users already have authenticator apps on there phone and I would rather just present one option and let the user use the app currently on their phone. By putting the brand name in the option it will make some users think that they can only use one or the other. There are other authenticator apps out there
DEFECT: ADSelfService Plus SSL Tool does not accept multiple SAN names.
When using the SSL Tool to create a CSR I cannot enter multiple comma separated SAN names in the SAN Name input box. Doing so results in the error "SAN Name must start with a letter and end with a letter or digit. The remaining characters can be letters, digits, or hyphens." The SAN name input box should behave like log360's SSL tool and allow a comma separated list of SAN names, otherwise those of us who use internal CA's cannot add both servername.mydomain and servername to the certificate and
Integration of ADSelfService Plus with WhatsApp Gateway
Hello Team. Is there the possibility of connecting ADSelfService Plus with any Gateway WhatsApp service for sending verification codes to users (Multi-Factor Authentication)? Is it contemplated in the next versions of ADSelfService Plus? We currently have some clients that have the WhatsApp Gateway service for sending notifications via WhatsApp; and they ask us if we can send the verification code from the ADSelfService Plus console to the users' cell phones through the WhatsApp Gateway. Regards,
Captcha Service - Screen Reader
Hi, We have identified an issue in our organisation relating to the Captcha functionality and users who are using screen reader software. The screen reader software being used does not work with the Captcha in its current state, would it be possible to add an audio option to play the captcha to those users and/or move to a service like ReCaptcha by Google: https://www.google.com/recaptcha/intro/v3.html I think they have a Open API to implement.. We wouldn't be keen on moving away from using the Captcha
Custom text and links in the layout
Hi all, i would like to add a link to the Self Service Layout where the user can lookup instructions and guidlines to follow for the Directory update. Currently i can only add fields from the AD to the layout. is it somehow possible to add custom text and links as well? Thanks
ADSSP 5507 cannot enable Login TFA for Mobile app login
It seem Login TFA only apply on web portal. Can I use Login TFA when login on mobile app
Approval Workflow question
Came across this post from last year asking exacly what I was looking for. And at the time there wasn't an option to kick off a approval request if a user tried to changed a certain field (for example if someone tried to change their own title from worker to manager), I was wondering if that had changed in the recent releases. Would be VERY handy if so.
Exchange 2016 Support
When will Exchange 2016 be supported for the OWA integration?
Support for Exchange 2016
When will this product support the Exchange 2016 version of OWA?
Autoenroll users based on User Principal Name (UPN)
From what I can understand, it is not possible to auto enroll users based on User Principal Name (UPN - e.g firstname.last@domain.com) and they can only be enrolled based on sAMAccountName. Can this be modified so that we can also enroll based on UPN?
Auto-Expire Registered Users Accounts
We seem to have issues where users go long periods of time after their initial registration, where when they have to use the self-serve unlock they've forgotten the answers to their questions. Would it be possible to add the ability to automatically expire a users registration within the self-server tool after a configurable amount of time, so they'd have to re-register and thus update their choose questions and answers?
Enabling a Restricted User Automatically
We can currently restrict users automatically on a schedule using certain criteria (disabled, OU, etc). Could we also have the ability to automatically enable restricted users based on criteria? I restrict students that aren't current students to keep our license count down to an affordable level. However, students commonly skip terms and come back, and then need to be enabled to do password management again. Right now I don't see a way to automate this process. Criteria I would like to see
Password Reset Options: Disable Domain Email as the primary reset option
Folks, I just got off the phone with technical support. Here's the issue: 1) A user enrolls in Email verification for password reset. However, they don't get their domain email on their mobile devices. They enter an alternate email (because the domain email is of no use for a password reset). They go to the unlock screen, and the domain email address is the default (and it isn't obvious that there is a drop-down. We need some options here, because this generates as many calls to our service desk
Exculde users who's account has expired because of end of date
Hi, Is there possibility to add feature to exclude users who's account has expired because of end of date has been set? It can exclude disabled users but this would also be good feature. Br. Matti
Security question resets
Hi there, I was wondering if it would be possible for us to have our enrolled users be required to reset/redo their security questions, say, once a year? We are finding that a lot of time people simply forget what the answers are to the questions and then end up calling our IT department anyways for a reset/unlock. If we could force them to update their security questions on an annual or semi-annual basis it would reduce the number of times people forget their answers. Thanks, Matt
SMS Setting
Using SMS with Encryption , is it possible using Encryption in SMS message?? For Notification.
Password Expiry Notification Enhancement
Request an option in the ADSelfService Plus' Password Expiry Notification feature to skip generating password expiration notices for any user where the "Smart card required for interactive login" has been enabled. Within our organization we have smart card enabled users and other who use ID/password. We're unable to segregate those users into separate OUs to control which receive password expiration warnings. Instead, it would be extremely helpful for us to simply have an option within the Password
Formatting of password expiry notifications
I'd like to format our password expiry notifications. Presently, they come out as one long run-on sentence. Despite having spaces inside of the message. I've tried inserting some formatting like \n \t but they show the literal. Can I use html tags?
Security Question Screen - Abbreviated Question and Answer
You have abbreviated the words Question and Answer - Is there anyway to configure this screen to get them back out of abbreviation. The powers that be here at my company feel like that's confusing and a distraction.
New 2 Factor Authentication Method - Not SMS
Hello, A draft version FISMA of security standards says SMS is not a secure way to transmit passcodes. Are there any plans to add the ability to use Google Authenticator or some other method to to AD Self Service Plus? Thanks,
DUO Two-Factor Authentication?
Are their plans to add DUO or Radius in addition to the Google authenticator option? We have purchased licenses from you already, but need the product to support two factor so we can make it available to more users.
Additional Admin Accounts
Good Afternoon, I would like to propose that additional technician roles other than the two in built in ones (Super Admin and Operator) are available I have a number of Service Delivery Managers who would like to have access to the reporting functions within the product but I have had to give them the Operator permissions which gives them the dangerous in my mind ability to un-enrol users. However I couldn't remove these permissions as I have two other admin groups so having a few more where I could
Is there a Windows Mobile App for AD Self Service Plus (and AD Manager Plus) ?
Shortly we are going to be rolling out Windows 10 phones and tables across our business. I wanted to know if there is a Windows Mobile App available for AD Self Service Plus and AD Manager Plus? If not, will one be released soon?
problemas con el certificado
estimados una consulta.tengo problemas con el certificado ya que me lo pide para configurar la aplicación móvil y mi pregunta es si puedo usar un certificado wildcard que utilizamos dentro del dominio empresa .
Multi domain managmenet for MSP´s
Hi, Has oneone found a good way to use ADSelf-Service for multiple domains (customers) management in single installation? The product seems great to handle multiple domains but if you have a domain list of 50+ you do not want users to scroll down to their domain when logging into the product. It would be much better if we could create unique landing page for each customer where only their domains would be listed. I have suggested this to ManageEngine but they claim customers are not requesting this
Password Expiry Notification
The email that the end user receives could use improvement. The message comes as one big paragraph and could use line breaks and if possible allow HTLM formatting. If this is possible please let me know how.
Remove Language Selection Option
Is there a way to completely remove the language selection option Drop Down List from the entire website?
Disable or Edit Mobile Device Pages
Is there a way to point mobile devices to standard web interface? Is there a way to edit the mobile pages?
Customize GINA/Mac Unlock/reset screens
Currently when users use the GINA/Mac feature to unlock or reset a password, it shows domain password requirements. The way these are displayed is not very easy to understand for basic users : "The minimum password age is 7" "The maximum password age is 180" "Domain password complexity is enabled" And so on. The list is confusing to novice users who often times do not understand what information it is trying to give them. We would like the ability to customize the GINA/Mac unlock/reset screens to
Adding a feature to the mobile device App?
I have a significant amount of staff who are looking for a mobile tool to see the organization chart and search employee's while out of the office visiting clients or on the road. Is it possible to have the Organization Chart and also the employee search fields added into the mobile device App? I have had a look but I have not been able to find how to enable this feature
Add Query-based Distribution group to be select in select OUs/Groups for Policy configuration.
Does it possible to use Query-based Distribution group in Policy configuration? Right now it show 2 groups type Security and Distribution.
Allow users to select between Multi-factor Authentication options
We are part of an international Non-Profit organization. Our users have access to different technologies. With one tweak the Multi-Factor authentication would be usable for us. While enforcing the use of Multi-factor authentication, allow the user to select between SMS Verification Code/ Google Authenticator / Email verification Code. I cannot service all my user without a user specific selection. Some do not have an SMS device, some do not have a Authenticator capable system or device, and
Next Page