ADSelfService Password Policy vs. AD Password Policy via GPO
Hi, we already own the product and it works nicely, but we don't use some of the features. I'm interested in the password policy features, but what if we already have AD Password Policies configured via GPO? Would the idea be to remove the GPO policies
Change Password Policy for Admin
How do I change the password policy for admin domain? I can see how for all users but it only shows me the user domain(s)? Thanks
ADSelfService Support is not responding even by email. Chat is not available.
I have tried all types of communications to open a case with ADSelfService Support and still yet to receive a response. I tried the following methods: Support website Email to support@adselfserviceplus.com Chat Phone call to 844-245-1104 No response from
Display issue with Windows 10 GINA interface
We are having an issue with Windows 10 Enterprise Version 1511 (10586.545). When installed the GINA addon appears as shown in the inserted image. There is scroll bar in the section of the screen where the password and the "Reset Pwd/Unlock" text is located. This is across all of my platforms, various notebooks/desktops and VMs, it appears to not be a display driver issue or anything like that. The same thing happens at all display resolutions, from 800x600 up to 1920x1080. We never had this issue
Error when RunAs
Updated GINA to v6.0 now users cannot use RunAs to elevate a program. They get an error that says File System Error (-1073740940). This happens in windows 10 22H2 and windows 11 22H2. With and without antivirus installed. If I remove the GINA the problem
Cleaning up Patch Folder
Can the old Patches in the Patch folder be cleaned up at all in any fashion? Especially the exploded directories, if not the ppms?
Lost admin privileges after upgrade
Just updated AD Self Service and now when I login, it looks like I'm a regular user instead of an admin. Before upgrade, when I logged in, I'd get the admin functionality.
Office365 SSO question
Hello everyone, I'd like to ask a question. Let's assume that we already have two factor authentication enabled (SMS, MS Authenticator) for our Office365 users and we also want to enable ADSS SSO (both IDP and SP initiated). Will the SSO work for everyone
Endpoint MFA Request ID
Option 1 We implemented MFA for Endpoints for select user accounts over a year ago. During that time, the Request ID would start out at 1 and increase by 1. The Request ID would increase by 1 if you selected Approve or Deny. The Request ID would reset
GINA resets locked screen wallpaper
We have a locked screen wallpaper that is deployed to all computers. When the GINA is installed, locked screen is reset to the Windows 10 default images. Is there anything I can do to prevent this from happening?
Customize notification message
Hi, We want to add an HTML button in the expiry notification message, but it always appears like a link. Is it possible to add a button in HTML or CSS ? Thanks. Regards
ADSelfService latest client agent and password sync agent versions
Namaste I would like to know where I can find ADSelfService latest client agent and password sync agent versions.
Connection to server failed.error 403
Hello everyone, I am evaluating in my adselfservice plus environment with MFA activated but when I log in to the machines with the agent installed, the MFA screen appears with the error: Connection to server failed.Error 403 Antivirus, firewalls disabled
Allow users to see when their password expires
I want users to go to the main page of our password tool, and see a "when does my password expire?" Is it possible to do?
Mobile App Authentication
Is there a way to make users authenticate when signing into the app on a new phone? Am I missing something? I've been testing with two phones. An android and an iphone. I enroll on the android and then sign into the iphone. It does not ask to authenticate
Disable / Hide Applications Tab in ADSelfService Plus User View
Hi Guys, Need your help, how can i disable / hide Applications Tab in ADSelfService Plus User View?
Can enrollment be moderated
Hello: We are currently testing ADSelfService Plus for our company and like it quite a bit. We are wondering however if there is a way to moderate the enrollment process? We would like all enrollments to be approved by the technicians of the appl
Reset Admin Login Requirements
Hello there, I'm currently trying to repair a very broken, old, and undocumented test environment for ADSelfService Plus. When trying to access the admin logon (via /adminLogin.cc), we get the following, even locally on the server it's installed on..
Using VPN to update cached credentials ADSelfService Plus
Can someone explain to me how the VPN works with this. I have entered the VPN Settings for our NetExtender. I am just curious how this works since it is not asking for any credentials to log into the VPN. Our VPN credentials are tied to our AD usernames/passwords so just a little confused on this part of the setup. Thanks,
GINA 2FA prompt everytime
We are getting ready to roll out this product. When I install the GINA client on my laptop, it works fine. But it is prompting me for answers to my enrollment questions on every single unlock or login. I don't want it to do that, I want it to just be
ADSelfService Plus and log4j (CVE-2021-44228)
Hi, Is the latest version of ADSelfService is vulnerable to the recent log4j vulnerability? Looking at the library files I can see both log4j 1.2.8 and 1.2.15. I really think that the home page should direct us to a status page regarding this issue. Some
Updating Cached Credential Over VPN (Cisco Anyconnect)
Hello, I am unable to get the system to update the cached credential over vpn after password reset. I previously had a support case with manageengine regarding this, which was resolved, but I have since then lost the settings. I believe the resolution
Challenge Questions Confirmation Needed
Can we please get the feature added prompting users to confirm their response questions? As it stands now users can incorrectly type their response questions and then not be able to unlock their account or reset their passwords. We cannot even deploy this app until this happens. This should be very easy to do with a hotfix. Please provide an ETA. Regards, e-
Changelog for GINA/Mac/Linux Login Tool (5.9 update)?
Is there a changelog for the recent 5.9 update to the GINA/Mac/Linux login tool?
DUO MFA call via HTTP (Windows GINA client)
Hello ManageEngine, We are deploying the ManageEngine GINA v5.9 client via HTTPS and it works well however our environment blocks HTTP calls to the outside world. This comes into play during the GINA DUO MFA prompt. From the logon screen, after a user
Mobile App: customizing help page?
Hello everyone, I've been wondering if there is the possibility to customize the help page in the ManageEngine ADSelfServicePlus App, or is it a built-in page? Thanks David
Multiple push requests to ADSS App for VPN
I just finished setting up MFA for VPN on our network and we are in pilot mode. Everything seems to be working well, except when users are logging in their mobile phones are getting multiple requests to allow the login. Even after the first request was
Some Authentication Problem when logging in
Hello Everyone, hopefully you could help us resolved our concern below. When users logged in they encounter this issue. Any ideas/troubleshooting procedures will be a great help.
Windows Logon TFA not working
I've carefully followed all the steps in this guide: https://www.manageengine.com/products/self-service-password/help/admin-guide/Configuration/Admin-Tools/GINA/windows-logon-tfa.html I've enabled SSL, setup a certificate and verified connectivity. The server and end computer are on the same domain and I've deployed the agent through the GINA Installation console page. Under the MFA section I've enabled the Endpoint MFA and the MS Authenticator. Logging on to my test box runs as normal; no 2FA.
GINA Other User option missing
With the GINA installed on my systems the "Other user" option is missing from the login screen is there a way to get this back?
Migrating ADSSP to new Server, different Postgres Versions
I am moving my ADSSP installation from one server to another and the postgres version on the existing server is 9.4.16 and on the new server is 10.15. Instructions say if these differ to contact support. Are there any additional steps when migrating
Log4j vulnerability ?
Hi, I have 2 question in One please, - Can we delete the "Patch" Folder contents after applying the Patch. - I do not found the log4j library in the "/lib" folder, ( it's only on the Patch folder) is that normal ? So , do i have to warry about it and
Dont want users to register\enroll
Newby, How do you disable the feature where users have to register and pick a string of question\answer?
Is ADSelfService Plus affected by CVE-2021-44228?
Hello Everyone, As stated in the Title, is ADSelfService Plus affected by the log4j Vulnerability CVE-2021-44228 (https://nvd.nist.gov/vuln/detail/CVE-2021-44228) ? If I am right, ADSelfService uses Tomcat, not Apache? Thanks in Advance
cve-2021-44228 ADAudit and ADSelf Service Guidance
Hello, I wanted to check if these two applications were susceptible to the Log4j vulnerability and what we could do to mitigate if they were? Thank you!
ADSelfService Plus RemComSvc.exe is detected as a threat
Hello Support. The attached document informs that the exclusion of the RemComSvc.exe executable must be made in the antivirus for the operation of the ADSelfService Plus Agent: However, Trend Micro antivirus from a client company of ours is detecting the RemComSvc.exe file as a threat. For security reasons, our client will not make the exception of the RemComSvc.exe executable. We have the following questions: Why does the ADSelfService Plus agent need the RemComSvc.exe executable? Can the ADSelfService
remote connection into postgres db / summary report
our organization has a need to provide data for how many password changes, resets, unlocks were handled monthly. how can we configure the postgres db running on the selfservice so that we can log in remotely to run a query? alternatively, can manageengine
TFA is not enabled for this user
I have had ADSelfService Plus deployed to all of our PCs so users can unlock their own account and reset their passwords. Recently, I have decided to enable MFA on any PC or server where a Domain Admin logs in. I have the policy set up and it works on
Opening a preventative ticket in advanced before upgrading builds
Hi, I was wondering before I do an upgrade on my build, am I able to open up a ticket in advanced in case anything were to go wrong during my upgrade? This is so that I would have a ticket number already established and I would bypass the initial waiting
Clients installed via GPO don't show as installed in ADSSP
Hello, I have a logon script that checks if the ADSelfService Client is installed; if not, it runs the .msi silently via command line. This works just fine, and after logging in the client is successfully installed. However, when I navigate to GINA/Mac Installation -> Installed Machines, no new computers are shown. As far as I can determine, if the client is installed any way other than manually or via the ADSSP "New Installation" tab, the machine doesn't show as having a working client. Despite
Next Page