Alerting on repeated failed verification or login attempts
Hi We have AD SelfService plus which is internet facing. So we want the ability to audit repeated failed verfication or login attempts and send an email to a support group if a potential intruder is trying to access multiple times. Does anyone know if this is possible? I have seen the built in reports which can be emailed daily, but I was hoping to have a solution that operates more real time. We have software that can monitor OS changes, so if I could get AD SelfService to make changes to a file
Disabled AD Accounts being imported
I am a new admin of ADSelfService Plus and I had an important question. I cannot find for the life of me the option to not import/show disabled accounts. Am I missing something or has this feature not been implemented? I saw a forum post from 8 years ago saying this functionality would be brought into the software, but has this happened yet?
Android App not displaying the new password fields
Hi Has anyone had the above issue? I have two users that can login and answer security questions but when it comes to changing their password the fields don't display. They are both using Lollipop 5.0 with the latest version of the app. Thanks
Problem in Change Password More detail
Random users are getting "Problem in Change Password" it is random but comes in waves and have not found a way to reproduce it on demand. Any way to get more detail to try and track the issue.
Embedded employee search
Hello. Our Marketing/HR have asked if it is possible to embed the "Seach Employee" function into the company's Intranet. when we embed the code it looks and works fine. However when the results come up it looks like this We do not want users to have the abilty to log in to ADSS at present so would prefer if the results did not offer the option to login or advertise the ADSS logo. is this possible ?
Add "Forgot Username" functionality
I requested this by submitting an online form, but haven't heard anything back. Is it possible to add a "Forgot Username" functionality, where the user enters an email, if the email address is in ADFS, you send the username to that email address?
Enrollment Reminder in 5202
Does the enrollment reminder not work in version 5202? After upgrading it seems to have stopped working. One of the main reasons for upgrading was an issue with the enrollment reminder in the previous version we were on ALWAYS showing. Now it won't show for any reason.
Notification User limit E-mail
Hi, I am using the 5206 version ADSelfService 5.2. Every Day 9 e-mail send "ADSelfService Plus license count is about to reach its limit" This e-mail of our settlement, we Is it possible to get weekly or monthly
CheckEnrollment.cc on a web page?
I had an idea to pop up a notice to our end-users on one of our portal sites if they aren't enrolled in ADSSP. I know the .hta script runs a check against CheckEnrollment.cc with the user name and takes different actions depending on the response - would it be possible for a web page to do the same? Has anyone else done this?
Prevent users from changing their email address
Is there a way to prevent end users from adding a second email address on the "enrollment" tab? We are using their email address in active directory.
Is it possible to set defaults for Policy Configuration?
Is there a way to set or change the default settings for Policy Configuration so that when we create additional policies we don't have to change the security questions and the other settings that we have made into company policy?
Loading... Please Wait
I'm having some issues with the landing page for ADSSP. Most users get stuck with a "Loading...Please Wait" dialog box and can't reach the login. Sometimes hitting refresh will fix the problem, but other times, it doesn't help. Other users have had success going straight to the /showLogin.cc page. Is there something wrong with the re-direct?
Disallow adding alternate emails
Hello, Is it possible to disallow the domain users from adding alternate emails when enrolling? Example: I want all domain users to have one email only which is the company email linked to the ActiveDirectory user through the mail attribute... Regards,
ADSelfService Plus 5.2 Build 5205
Hi! We are glad to announce the release of the latest build of ADSelfService Plus – 5205. The latest update brings an exciting new feature. Enhancements Now easily integrate custom SMS gateway providers using the product GUI. Notification emails to alert you when licensed user count reaches its maximum limit. Notification emails to alert you about license and AMS expiry. Issues Fixed Issue in change password when it is done by a service account user with only change password permission. Reset Password
API Available
Does ADSSP have an API that can be called, or a way to programmatically use the tool without the native web interface?
Password Expiry Notification is not working
Hello, i have a problem with the Password Expiry Notification Service in ADSelfService. I have created a notifications job and the administrator receive a e-mail with a report, but the user does not receive an e- mail. In the report is the value of the column "Password Expiry Date" 0. (please see the attachment) Do you know why? Can you help me? We have two 2 Domain Controller with Windows Server 2012 and the Domain functional level / Forest functional level is Windows Server 2008 R2 Thank
Helpdesk tab?
When an end user logs in, they see a tab for "Helpdesk"? Can we remove or rename this? We use ServiceDesk Plus and this will likely cause confusion...
SSL Certificate and SMS
Hello, i have tested the ad self service plus portal. (the free edition). If the tool works , we will buy the program I have two questions. 1. SSL Certificate: When I create the CSR using the SSL Tools , then I get my internal PKI an error. Your certificate request was denied. Your Request Id is 1147. The disposition message is "Denied by Policy Module". Contact your administrator for further information. Can I specify the certificate template name ? In another program I had to specify the template
ADSelfService Plus 5.2 Build 5204
Hi! We are glad to announce the release of the latest build of ADSelfService Plus – 5204. The latest update brings an exciting new feature that sends real-time alerts about password change or reset to end-users. Feature: Send real-time Email and/or SMS notifications to end-users as and when their Active Directory passwords are changed or reset natively in Windows. Enhancement: Reset Password and Change Password audit reports have been enhanced to include native password changes (Ctrl+Alt+Del screen)
Extremely Disappointed: SMS Texting Does Not Work in US
We recently purchased the SMS texting add-on pack for ADSelfService only to be told that Manage Engine is going to refund us the money. Why is this even an option on the website if it doesn't work in the US? "I am afraid to say that we have finalized the issue with Clickatell team that they are not able to fix the issue with sending SMS through our account which needed the long code feature to send out SMS notifications to some of the carriers in United States."
mysqlQuery.txt is taking a lot of drive space
mysqlQuery.txt is 6gb, and cannot delete it. is there some way to delete or reduce the size of this file? "C:\Program Files (x86)\ManageEngine\ADSelfService Plus\logs"
Users Receiving SSL Errors in Google Chrome
Users attempting to enroll in ADSelfService are reciving multiple errors when they try to enroll using a recent version of Google Chrome. Errors include; ERR_SSL_FALLBACK_BEYOND_MINIMUM_VERSION INVALID or WEAK CIPHER or INCORRECT SSL VERSION
Access Denied when trying to unlock an account
Hello, I am testing out ADSelfService Plus. Since using a Domain Admin account is not an option I am trying to get it setup using a lesser privileged user. I found http://www.manageengine.com/products/self-service-password/admin-guide.pdf which has some information on the permissions that will be needed. ADSSP is connecting to the domain using a user called nonadmin. I have delegated permission to that user to be able to reset passwords and R/W on the lockoutTime attribute on the OU where my
Cross-site scripting (XSS) vulnerability
It has been publicly announced in US-CERT that there is an exploit in ADSSP. Has this been resolved in 5203? Overview Cross-site scripting (XSS) vulnerability in ZOHO ManageEngine ADSelfService Plus before 5.2 Build 5202 allows remote attackers to inject arbitrary web script or HTML via the name parameter to GroupSubscription.do. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3779 Please advise.
Security Question in different languages
Hi, is it possible, to have the security question for the enrollment in the same language as the browser has set per default ?
Different language / mulitlanguage in Security questions
Hi, is it possible, and if, how, to make a language selection / difference according to the browser / personal settings ? We have some user, which are not that firm in English and other, which are not that competent in German. Thx. Tobias
Email address length
I'm using ADSelfService Plus, or at least trying to get it set up correctly and rolled out to all users, but the email address (E-Mail Id) used for sending verification codes for authentication seems to be limited to 28 characters. Most of my users have email addresses longer than this so their email address is being shortened and obviously emails won't send. Any help would be greatly appreciated.
Issue "Interactive Service Detection"
Hi, When I configure start of ADSSP with service, sometimes appear a pop-up in the ADSSP Server that say "a program that is running on this computer attempts to display a message" , I message attached image. This is a problem, or is normal? Thanks and regards, Gerardo Cortés
Password reset error
Our users get the follow error after trying to reset there password in chrome. Please advise.
Login for Admanager Plus
Afternoon, After updating Ad Self Service I am unable to login as the admin or as a technician unless I use http://(server name):8888/authorization.do the default http://(server name):8888/adminlogin.cc kicks back a page is not found error. Please assist ASAP. Thank you, Daniel Price
Either Chrome is the worst browser ever or integration for Chrome is lackluster
We are having nothing but problems using Chrome for self service updates, configs admin functions. ERR_SSL_FALLBACK_BEYOND_MINIMUM_VERSION seems to be a popular error thrown. Latest version 5203 running. Anyone have any ideas other than use Internet Explorer?
Prepopulate domain drop down menu
Is there any way to prepopulate the domain drop down menu via a URL tag? For example www.manageengine.com/showLogin.cc?domain=XYZ
password expiration
Having just deployed ADSelfservice plus 5.2 free password reminder tool I'm having several issues with the reminders being sent to people who's password is not yet to expire. Checking the data in ADSI edit for 'pwdLastSet' this states 05/01/2015 08:38 where the reminder is being sent to the user stating that his password will expire in 28/11/2014 07:33 I have checked domain replication and the details held for this user on all DC's and the data is consistent. Strangely this email has been sent to
password expiration
Having just deployed ADSelfservice plus 5.2 free password reminder tool I'm having several issues with the reminders being sent to people who's password is not yet to expire. Checking the data in ADSI edit for 'pwdLastSet' this states 05/01/2015 08:38 where the reminder is being sent to the user stating that his password will expire in 28/11/2014 07:33 I have checked domain replication and the details held for this user on all DC's and the data is consistent. Strangely this email has been sent to
Expired passwords
I am currently at 5202 and planning to update to 5203 this weekend. I have noticed one of the features that had us update does not appear to work as expected. " Password Expired users can now change their passwords when they log in to ADSelfService Plus. Users whos passwords have expired in AD have are not getting prompted to change. and I have not found options to control behavior.
OSX Yosemite Support for ADSelfService Plus?
We're in the middle of a large demo of ADSelfService Plus, and while the client works great on our Windows clients, the OSX client doesn't seem to be working. We're running OSX Yosemite. The client installer runs fine, and finishes without error. After installation/reboot, the login screen icon doesn't display as the screenshots in the documentation suggest. Any ideas?
Sign In Username field
Can the Sign In Username field be set to look at something other than the sAMAccountName? We have a custom attribute we would like to use instead if possible.
Remove "Mobile Access" and "help" buttons
Dear all, Would be possible to remove these buttons from the user interface? Regards, Marcelo Machado
ADSelfService Plus 5.2 Build 5203
Hi, We are glad to announce the release of the latest build of ADSelfService Plus – 5203. Features: OpenLDAP and AD LDS based directories are now supported for self-service password management and password synchronization. Issues fixed: Issue in employee search which fails to show the result when search filters are used. Issue which failed to display enrollment prompt to dis-enrolled users when they log in to the self-service portal. Issue in password reset which showed ‘specified network password
MS SQL: User Reports on Dashboard
We setup ADSelfService with MSSQL and experience a problem with user reports. 1) The section "User Reports" on the "Dashboard" tab is empty "no Reports Available" 2) On the "Reports" tab none of "User Reports" works (Locked Out Users, Soon-to-Expire...). It starts listing the users - we can see the user names for a few seconds when the report is generated, but at the end of generating the view is cleaned "no reports available".
Next Page