How to limit the number of mobile numbers in ADSefServicePlus
Hi how can i limit the number of mobile numbers that user can add. some users added multiple mobile numbers.
MFA Recovery code
Hi ManageEngine Team, The MFA Recovery code which is made available to end-users after they have enrolled in ADSSP is a nice feature but needs a slight change, in my opinion. The MFA Recovery code is provided as an optional step for end-users to download
PENDING - 2 months & still UNRESOLVED -- ADSSP Mobile App does not follow the MFA for Reset / Unlock
I had reported this 2 months back now and this is still & definitely a Security risk here. The bug existed in My ADSSP build number 5815 & exist in every version even in 6008 It is over 2 months now and this is still not fixed... Do let me know the escalation process & the SLA for bugs resolutions We have our MFA for Reset / Unlock enabled to 3 factor authentication for reset / unlock operations. However, when performing Password Reset and/or Unlock account from the ADSSP mobile app, it doesn't
ADSSP Mobile app issue with verification methods
When Resetting password and/or unlocking account from the ADSSP mobile app, users get only 2 modes/option to verify themselves.. 1. Verify using Security questions 2. Push notification verification. User has enrolled with Email, SMS, TOTP, QR code , Security & Push notification Why are Email verification, SMS verification, QR code & TOTP not made available when Resetting password or unlcoking account from ADSSP mobile app?
GINA display customization
The GINA screen at the Windows login screen does not give a good look. It should provide & have to ability to display the default Web page you see when a user or Admin accesses the portal via Web browser or a Custom web rather than the dull black screen
ADSSP doesn't load
Hi all, i have installed this software but, when i try to open it, it loading and it doesn't open any kind of browser. in attachment my error.
NGINX Reverse Proxy with basic authentication
Hi We have put ADSelfService Plus behind a reverse proxy (which works fine) and have now enabled htpasswd basic auth. After you enter the basic auth credentials you are presented with the ADSelfService login page. If you enter the credentials here, doesn't
AD LDS
Can this product be used for accounts that are stored in AD LDS?
Random users getting Invalid Code error when trying to register for self service
We have had random users, using both iPhones and Androids, get the Invalid Code when either scanning and manually entering the code from the Self Service page. The time and date have been verified on both the computer and the mobile device. In some instances
ADSSP Admin portal missing logs for MFA Backup Codes generated by Admins
The ADSSP portal Build 6100 provides Admins to generated MFA Backup Codes for end-users but does not have any logs recorded which could help trace back to which Admins have generated this code for an end-user account This is very bizarre and not sure
ADSelfService Plus in a mixed IPV4/IPV6 Environment (with solution)
Seems that while the version 6.0 Build 6013 and older versions of the AD SelfService Plus program (ADSP) only works with IPv4, and it flat out will not work at all in a mixed IPv4/IPv6 environment. With many networks n the mixed environment now, the Self
ADSelfService Plus 6100 Release
Hello everyone, We are glad to announce the release of build 6100 with the following features, enhancement and issue fix. Enhancements: The Tomcat server bundled with the product has been upgraded to version 8.5.57. The ADSelfService Plus database backup
Need to have ability to have multiple separate web pages for multiple domains added in ADSSP
Ability to have multiple separate web pages for multiple domains added in ADSSP. As not all functionalities are needed to be enabled for every domain, having 1 common webpage for all domain isn't an ideal solution. With separate webpages for each domain, only the needed options and functionality can be enabled without have users throw question to the IT department
Cisco ASA vpn MFA + NPS
I am testing MFA for VPN with the folowing guide https://www.manageengine.com/products/self-service-password/help/admin-guide/Configuration/Self-Service/mfa-for-vpn-logins.html Enrollment with google authenticator worked fine. The problem I am having
Issue with APN configuration in Build 6013 & 6100
Configuration of APN on Build 6013 & 6100 has a bug and DOES NOT work. It is very bad to see that bugs are not identified well before releasing of new builds by ManageEngine. Same bug existed in 6013 and now again in 6100. ManageEngine ticket number
Sync LDAP users/mail in ADSelfService with Password Sync.
Hello, We need to change the mail keys of an LDAP server with ADSelfService, is it possible? We have activated the Password Sync module in the ADSelfService panel by configuring the LDAP server parameters but we do not see warnings of expired or blocked
expired and soon to expire passwords no longer populating
Hello, Does anyone have the following issue?: Our Soon-to-expire and Expired Passwords showed numbers on the dashboard. We could send out email notifications to users to warn them of their password was expiring. Both stopped working after we installed
Upgrade to 6100 causes 502 error rendering site unusable
I installed the service pack after coming back from vacation because I noticed it had some security bug fixes. I patched from 6013 to 6100. After applying the service pack 6100 the site no longer worked and provided us with a 502 error. I had to revert
enrollment user and trusted Machine questions
Dears. How can I remove enrollment user ? note; the user account still exist and not disabled. How can I remove trusted Machine after the user check this option during MFA endpoint login process? Thanks in advance.
Expand offline codes to work for when mfa service is offline
We are using the MFA to authenticate logins on PC's with the PC client and it works great in the office environment. However we have some technicians who often work in offline areas regarding the internet and in those situations they cannot log in to
Can we edit the timeout setting?
Admins log in to this app during the day Is there any way to extend the timeout?
ADSelfService SAML Custom Application
Hi, I try to configure a Custom Application with SAML Authentication. Is it possible to modify the Target Attribute? In the target attribut i need a special name. Do I some changes in the Advanced Configuration remains unchanged the Metadata. How I can
Upgraded from 9700 to 9800 and can't access adminLogin.cc
Hi, we patched our installation from 9700 to 9800 and can't access adminLogin.cc It keeps redirecting to authorization.do no matter what we try. Any ideas? regards, Kev
Force Enrollment via logon script: Server unreachable, right now!
I have set up force enrollment by adding the appropriate lines to my logon script, however when I log in as a user, I get a popup box that says "Server unreachable, right now!" The firewall is off on the server, and I am able to get to the web portal from the machine that gets the error. Any ideas?
Radius MFA
Has anybody had issues connecting ADSelfService Plus to OpenRadius. I am asking as OpenRadias has a LinOPT connector which would then connect to a Feitian OTP c200 hardware token. In theory when a user logs on AD SelfService Plus will request a MFA challenge,
Portal rebranding theme
Hello, In current version (6009), the portal rebranding > theme does not apply to all users, only to admin account. We need to apply a specific color to end users, is there a way to force this, so all users see the same color? Thanks!
MFA crash on Windows 2012 R2 endpoint (Domain controler)
Hi, We setup ADSSP in an test envrionment to see if it's fits our needs. We successfully be able to setup MFA on some endpoint (Windows 2019). One of our test server is the DC (the only one) of the test domain with Windows 2012 R2 installed. When we
ADSSP Geolocation based conditional access ( CA ) not workin
Hi We are on the latest version of ADSSP 6012 and configured GeoLocation CA with trusted countries When jumping on a VPN with different IP, the authentication and access to ADSSP still works as normal Is that a bug or need additional configuration on
PostgreSQL Version 11.6 not supported?
Hello everyone, We are using Build 6002 and an external postgreSQL Database. We have to migrate from Version 9.5.16 to 11.6 but we are getting error messages in the Wrapper.log INFO | jvm 1 | 2020/11/05 07:40:08 | Trying to connect to a incompatible
ADSelfService Plus 6013 Release
Hello everyone, We are glad to announce the release of build 6013 with the following features, enhancement and issue fix. Enhancement: Support for SAML Authentication as an MFA method in the ADSelfService Plus mobile app (both iOS and Android) for self-service
Select users that will recieve emails of "Password Expiration Notification"...
Hello, Here at my campany we are happy users of ManageEngine OpManager. I was browsing other products and I found ADSelfService that will help me with notificating users of expirating passwords. Installed and notice that it have much more functionalities that i dont need, i only really need email notification of password expirations. So , the free versions is more that enouph for us, as we have less than 50 users that logon on Domain that have the policy for password expiration active. My Questions
Password reset with AD Attribute value as verification
Hi all, Just trying to set ADSS to allow password resets using an AD attribute as a verification code without the requirement to enroll first. Is this at all possible? Thanks, T
ADSelfService Plus
Hi It looks like removing the domain selection option is working not only for the normal user logon page, but also on the /adminLogin.cc page Now when I navigate to /adminLogin.cc I am not presented with selection between DOMAIN and LOCAL AUTH , therefore
ADSelfService Plus 6012 Release
Hello everyone, We are glad to announce the release of build 6012 with the following features, enhancements and issue fixes: Features: MFA backup codes for authentication: Users can now prove their identity using backup codes when they cannot access the
No Data Available for Enrolment Reports an Audit reports. (Yes for User Reports)
Hi ME Team, Today I finded that all the Enrollment Reports and Audit Reports show "No Data Available", I am pretty sure that yesterday or a day earlier I ran the Enrolled User Report and it worked. I restarted the adssp server but everything was the same.
MFA email timeout
Is there a way to extend the timeout for sending the 2 factor authentication email to more than 30 seconds? I have contacted support and they attempted add a smtp timeout line to the wrapper.conf file and it still times out in 30 seconds. We are having
Single Sign-On Saml login
Hi, I would like to configure single sign-on to be able to start an external application. I have a question about this. Is it possible to open an application directly with a link in the browser, or does the application always have to be started via ADSelfServie
Password synchronization with LDAP
Hi, We will plan to migrate our password sync solution, so in order to do this i've tried ADSelfservice Plus. I'm asking if we can synchronize password from AD to LDAP directories like : ODSEE Free IPA Ping Directory I've tried to use OpenLDAP application
Does the Password Policy Enforcer works for both Windows 10 and Windows 7?
Hi Adssp team, I would like to know if the Password Policy Enforcer works for both Windows 10 and Windows 7. As additional information, we have 6009 version installed, the option "Enforce this policy in GINA/CP (Ctrl+Alt+Del) screen and ADUC Password
AdSelfservice Gina Client button customization
Hello I would like to know if it is possible to customize or translate the GINA client button on the Windows lock screen. By default it is in English and we would like it to be displayed in Spanish. Thank you.
Next Page