Performance issues (slow logins) - Potential new customer
Hi all - I'm currently trialing ADSSP with a view to purchasing it for around 5000 users. It's by far my favorite product, however I'm trying to determine why I'm consistently facing 7+ second delays when; - entering a username to enroll - entering a username to reset a password/unlock account - entering an answer+CAPTCHA to continue login as a user Now, I've read these forums and checked all the standard things (FQDN for DC's, a live and local DC being at the top of your list, correct ports being
Getting SSL Error with Comodo Cert
Hello everybody, the last couple of days i've been struggling getting my SSL cert up and running. I got my SHA 256 cert from comodo and followed the steps for the keystore. To only thing I changed is that I used COMODORSADomainValidationSecureServerCA.crt and COMODORSAAddTrustCA.crt instead of the UTN ones. Error when loading the site...ERR_SSL_VERSION_OR_CIPHER_MISMATCH on Chrome and SSL_ERROR_NO_CYPHER_OVERLAP on Firefox (tested it on multiple machines, all with clear cache). I then saw the tip
Email Notification select specific OUs not working?
For some reason, when trying to specify an OU in the To: [domain] field for "Send Enrollment Notification via email", it persists to ALL. It never allows me to specify an OU. I thought this was a browser issue, but it happens on all browsers, all systems. so its repeatable. Why am I unable to target specific OUs? Am I missing something here? Running on the latest version of ADSSP.
Upgrade to 5315, Users cannot change passwords
08.12.2016: Unfortunately, removing KB3167679 did not work for our environment and the Support team has indicated we'll have to await a solution from their development team. Awaiting final resolution. UPDATE: Contacted support regarding this issue; appears to be a problem with build 5315 I believe. Awaiting resolution from support team. After upgrading to build 5315 some of our users are reporting issues resetting or changing their passwords, even though they meet the security requirements. The Password
ManageEngine ADSelfService Portal - Unlock Account not working
Hi, I've just deployed ManageEngine's ADSelfService and noticed that the account unlock feature doesn't appear to work. I've gone through the steps of enrollment then went on to lock the account, go through the unlock account feature, get a confirmation that my account is unlocked but when I look in Active Directory, the account's properties still indicate the account is locked. Can someone let me know what is the best way to troubleshoot this? I can see the unlock request logged in the dashboard
Cannot configure certain features
Hello, I'm having an issue with trying to configure email notifications. Actually it's 2 issues. 1 - I cannot successfully get to the Server Settings section under Admin -> Product Settings. Clicking Server Settings will load some of the page, but I cannot see anything under the Mail Settings tab. I can also not click SMS Settings or Proxy Settings to load those tabs. Both the Connection and Windows Service links under Product Settings seem to work fine; it's just Server Settings where I have
Send Registration does not translate 'macros' into text
I'm trying to use the macro %givenName% but the email contains the literal text rather than expanding to the name. Also, is there a way to insert line characters? Thanks, Adam
RDP crash
Afternoon everyone We've just installed the trial version of AD SelfService Plus with a view to purchasing the professional product. However, when we try to use our Microsoft RDC and start typing the username it crashes when we write the second character! Any ideas? Thanks
"The given servers are not operational"
This message was displayed on the screen after a user unlocked his account (successfully). Any ideas? Thank you, jamie -there's only one server
SQL Query to Fetch Enrollment Data
Hi All, We have successfully used the external data source option to connect to an MS SQL Database so we can setup regular Fetching of user enrollment Data. We plan on asking users 2 security questions when they need to unlock their account or reset their password. 1. What is your date of birth (dd-mm-yyyyy)? 2. What year did you join the company (yyyy)? Our development team has kindly setup a custom view in the database we are connecting to to pull enrollment data into ADSS Plus. This is called ADSelfServicePlus.vwStaffDetail
Email Server Settings Office 365
I am trying to configure the Mail setup in the Server Settings Tab but I keep getting the below error message. We use a Hybrid version of Office 365 with authentication going via an ADFS server Could not connect to SMTP host: smtp.office365.com, port: 587 I have looked on the Forums here and have tried the recommendations but still no avail, I have also tried this with the ADManager Plus console. I have also tried the Manage Engine Support Team but they were not able to help. Has anyone managed to
Password Sync Issue
I am having an issue where ADSelfService will successfully reset a users password when using the "Reset Password" option but it does not appear to Sync with the Domain Controller. I have checked the Domain Configurations and everything appears to look correctly. The weird thing is that we also use ADManager Plus and the same exact domain settings are configured and when performing a password reset it is successful. Any solutions? Is there a log that I can view to see if I get any additional information?
SSL Keystore
I have created a new keystore both using the web tool wizard and by hand using keytool csr via command line instructions straight from tomcat. When I change the server.xml file to point to the new keystore and reboot the service, I can no longer access the selfservice site. The service is running. I do not get any errors from any of our browsers. I see that there is an option in the server.xml connector that is debug=0 I have not found any information on this setting. Is there a place where I can
USB GSM Modem
Hi I am currently having issues with getting a USB GSM modem to work under ESX 5.5, I was wondering if anyone else has tried to get this working in a virtual environment and if so what make and model of USB GSM modem was used. I have been unable to find an up to date list of supported modems at all which is a shame as most of the rest of the documentation around this solution is a pretty good standard. Thanks
Internal SSL Configuration
Good Evening, I am trying to setup ADSelfService Plus to use HTTPS and we are using an internal certificate (Windows 2003) CA, I have reviewed the documentation around setting up SSL but the documentation mainly refers to external CA partners is there a document or guide I am missing that has the detailed steps required to set this up at all as at the moment I can't get the solution to work using SSL. Basically I set it up and when I login I get a standard IE error message about trusted sites I click
SQL Database Move
I am very new to ADSelfService Plus ver. 4.5 as in, our team recently acquired ownership of the production environment. our DBA team has informed us they need to move our sql instance to a new server. what is the best practice for updating the sql configuration? i found this KB https://www.manageengine.com/products/service-desk/help/adminguide/introduction/setting_up_database.html#Configuring MS SQL but was unable to locate a file changeDBServer.bat and the KB doesnt really specify what version
Domain Users are unable to login
Within the past few days we have had a number of Vista computers and Windows Server 2008 R2 servers that are preventing users from typing their password in the password field after entering CTRL, ALT, DEL. EventID 1000 Faulting application LogonUI.exe version 6.0.6001.18000 time stamp... faulting module ADSSProvider64.dll. If I remove the GINA application from ADSelfService Portal, within a few moments the user can then login.
USERS UNABLE TO UPLOAD PICTURES IN AD
Hi all, I managed to install trial version in my PC and I was able to upload my Profile Picture in AD and hence reflected the same on Outlook by using your tool.However other users are unable to upload their pictures, so I am the only one who can.Can you please explain to me why is that happening, whether it is licensing issues. i work for a bank and i would like to purchase this solution however with no proper motivation and required number of users for test i wont be able to achieve that. please
ADselfservice Plus postgres credentials
We are trying to auto enroll users and need to gain access to the postgres database to do so. Please provide me with the default username and password for the postgres database
Monitors Flickering after installing GINA client on some machines
I am testing this solution but have run into an issue where some clients are causing the screens to flicker and become unusable. Once I remove the client, the flickering stops. This occurs even after rebooting the computer.
new installation build 5312 empty logon page: not able to login
Hi all, Yesterday i did a new installation of ADSELFService, and i have buildt the GPO for enrolling to the clients. But when i start my windows 7 pc, all i got is an empty page with a cancel button. I have removed the registry key B80B...etc from HKLM\software\microsoft\windows\currentversion\authentication\credential providers what else can i do? regards, Mieke
Black screen upon logon (30-60 seconds)
Hey there, We're running version 5309 with GINA client 4.2.9 on our endpoints and several of our users have noted a black screen at logon that delays logon times by up to 60 seconds. We've replicated this issue and removing the GINA client removes the black screen and additional logon delay. Has anyone else experienced something similar or know of a known bug. I didn't see any comment towards this in the release notes so haven't felt a need to upgrade.
Running as NT service not working properly
I would like to run ADSS as a service but am running into a few hangups. 1. The service starts successfully on boot up but the portal page is not available until i log into the computer and start the portal piece. This also means that I must remain logged into the server for ADSS to work. 2. We do auditing of password changes and lock outs. When a user resets their password or unlocks their account, the alert is coming through but is showing that I performed the change (I assume because I
Client software installation
Good day I have just tried doing a manual installation of the the client software on an end user machine then restarted. I was expecting to see the addition of the ADSelfService components on the logon screen but nothing happened. I was asked to input the server name and port during install. The client OS is Win7 Enterprise. How would I make sure the client installscorrectly to allow proper usage by end users. Regards
iOS/Android Configuration Issues
I really need assistance with an issue I am experiencing where I am unable to configure our Server/Site settings for iOS and Android mobile applications. We recently made the site accessible to the public internet, we have the site configured through an F5 balancer but since IP space in our environment is extremely limited we were forced to use SNI which allows the server to connect to multiple SSL Certificates to one IP address and gate. If I configure the settings on the iOS/Android application
ADSelfservice App (IOS) not working
Hello, The app for the ADSelfservice portal is not working. Also, access to the mobile site via Safari is not possible (anymore). Chrome however, installed on IOS, works. most likely this has something to do with the SSL ciphers. I modified the server.xml as described in the fix for the "weak ephemeral Diffie-Hellman public key" issue. Still the app and Safari is not working. I am running on the latest version of ADSelfService. how to fix this ? kind regards, Marco Nedermeijer
Web Page hangs after Password Reset
we found that when a User is change his Password the Web Page hangs and the User just see the predefined Timer counts down but no Status Message. meant: a User change his password, click the Reset / O.K. Button and nothing is happen until the Counter runs to 0 Minutes, then the User get a Message called : your Session has been expired, please try again... but the Point is that the Users Password has been changed in the Background, so hi can re-login with the new created password. well, does anybody
script error in GINA when reseting pwd (ADSS v. 5303)
Hi, After installing new GINA client software (from ADSS version 5303) and attempting to reset password from Windows logon screen the below error shows up. Any idea? /Mar
ADselfservice Portal not working in chrome 48.0.2564.103
We are getting below error while opening self-service portal in google chrome. This webpage is not available ERR_SSL_VERSION_OR_CIPHER_MISMATCH A secure connection cannot be established because this site uses an unsupported protocol or cipher suite. This is likely to be caused when the server needs RC4, which is no longer considered secure. How it is working in IE.
selected container (domain/ou) is empty, no users found
hi there, I have build number 5.3.5310 running of AD Selfservice. I have created an account to start the service and this account has rights in all my OU's to read AD information. Some of the OU's with users are not seen by the software and i don't know why. What am i doing? I click on Administration -> Administrative tools -> Quick registration -> e-mail. I select a OU and click to sent mail. Some OU's don't work and show the above message. Other OU's work fine and e-mails are being sent. However.
Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed?
Hi Guys Having an issue with deploying the GINA client to a particular machine. I get the bellow error if anyone has seen this could assist that would be fantastic. We have tried restarting the machine running a cmd net use to see if their are any connections to no use. Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed. Disconnect all previous connections to the server or shared resource and try again....
Unable to reset admin password
I believe we were using a service account to query our AD. That account was compromised and therefore disabled. We now can not login to the console. I reset the ADMIN password using the .bat file .. one issue (I think) is that on the login screen the Log on to: drop down only has our domain listed .. I put in the admin admin and it fails .. I tried local\admin for user name but that failed as well. Ideas on how I get back in?
HTTP to HTTPS Redirect
I'm having issues with trying to get everything to forward to our password change site, for example https://test.domain.com I have Enable SSL Port checked, with port 443. When I go to test.domain.com it does not forward to https://test.domain.com, instead the site times out. I can get to the site if I type in the entire URL https://test.domain.com I'd like to be able to get access to the site by just going to test.domain.com and have the site redirect to https://test.domain.com None of the options
AdSelfService Plus Multi Domain
Does ADSelfService Plus support multiple domains? If so how do I go about setting it up.
AD SelfService Plus Diffie-Hellman fix version 4.5 4570
Our AD Self Service Plus is currently version 4.5. Is there a supported fix for the weak public encryption key issue (Weak ephemeral Diffie-Hellman public key)? If not, is there a supported upgrade path from 4.5 to current version (5.3?)? Thanks, Dan
SelfService mail server fail
Mail service from SelfService has quit. I have tried to send test emails, which also fail. Where can I find a report that may say why? We use basic settings for outgoing mail (anon, port 25, SMTP w/ no SSL/TLS). The host server can reach the mail server (AD Manager is working fine). Thank you!
Policy Configuration
I have a policy setup to automatically unlock user accounts if part a specific group. An account got locked out and nothing happened. I am confused by one of the settings, the automation tab. Not sure if I have this setup correctly.
Some users getting 'Page cannot be found' errors
I was helping two users sitting side-by-side through first-time enrollment today; both are using identical computers, both are using Chrome. The first user filled out the security questions and answers and the enrollment worked fine. The second user filled out the security questions and when she clicked enroll she got an error message that the page couldn't be found (With back' and 'sign out' links, so a ADSS generated page and not a default browser one). Since there were no differences in hardware
Error durring patch
I get the following error when patching from 5306 to 5307.. Please advise. Unexpected Error. Please click View Log>> for more details java.lang.reflect.InvocationTargetException at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at com.adventnet.tools.update.installer.Unzipper.contextPostInstallation(Unzipper.java:1421)
Reset Password/Unlock Account at login screen does not close when clicking on the red X
When users click on the reset password / unlock account at the login screen (Windows) they are having issues with closing the popup window. Half of the time, clicking on the red X in the right hand corner doesn't close out the window (see attachment).
Next Page