[ADSelfService Plus 5808 Release] - Endpoint MFA
Hello folks! We are delighted to announce the release of 5808. Highlight : Endpoint multi-factor authentication (MFA) : Add an extra layer of security to Linux logins, in addition to Windows and macOS, with any of the supported 14 authentication methods including Yubikey, fingerprint authentication, RSA SecurID, and DUO Security. Enhancement : Option to perform remote installation, un-installation, customization, and re-installation of the Linux login agent from the admin console. New to ADSelfService
Implement AD Account expiry date notification
Is it possible to add notification for AD accounts (not their passwords) that are going to expire? It would be nice to be able to automatically send notification to users who's account is going to expiry let's say in 30 days.
[ADSelfService Plus 5807 Release] - Passwordless verification
Hello folks! We are delighted to announce the release of 5807. Highlight : Yubikey authenticator support: Users can use the Yubikey device to prove their identity during self-service password resets/account unlocks, ADSelfService Plus logins, and endpoint logins. New to ADSelfService Plus? Download the fully functional 30-day free trial now. Regards, ADSelfService Plus Team Toll Free: +1-84-245-1104 Direct: +1-408-916-9890 Email: support@adselfserviceplus.com
GINA troubleshooting
Hi, We have some computers that don't get updated by the GINA customization schedule. Where can I find server-side and client-side logs related to this? I already checked %installationdir%\logs\gina on the server but that folder is empty. And I can't find the installation directory on the clients at all, though gina is running. /Rasmus
Attend our Active Directory and IT security seminar from the comfort of your workplace.
We're thrilled to announce that our two-day Active Directory and IT security seminar will be available for online attendees. If you've always wanted to attend one of our seminars but haven't been able to make the trip, here's your chance. Join us online as our technical evangelists help you get up to speed with all the latest trends and best practices in AD, IT security, and much more. You will also learn how adopting an SIEM solution can help prevent data breaches in your organization.
A big 'Thank You'. From all of us, to all of you!
Hey folks, This Thanksgiving, we'd like to thank you all for being a part of the ADSelfService Plus community and for constantly supporting and motivating us to up our game. Here's a little something to let you know how much we value you: And before you kick-start this holiday season, on behalf of the entire ADSelfService Plus family, I'd like to wish you a very Happy Thanksgiving! I hope you have lots of fun! You so deserve it! Cheers, Team ADSelfService Plus.
Don't miss out: Register now for our Cybersecurity and Hybrid Identity Management seminar in London.
Hello! We wanted to remind you that our London Cybersecurity and Hybrid Identity Management seminar is around the corner, and we'd love for you to join us. Join us in London Reserve your
Report on all domains
Hi, Is it possible to easily report on all domains rather than one-by-one? need to extract: Total number of enrolled users All time AD unlocks All time AD password reset Thanks, John
ADSelfService Plus 5806 Released !!!
Hello folks! We are delighted to announce the release of 5806. Issues Fixed: Issue in the GINA/CP logon agent that could lead to privilege escalate is fixed. A CSRF Vulnerability that occurs in the self-update section of the end-user portal is fixed. [ CVE-2019-18411 ] New to ADSelfService Plus? Download the fully functional 30-day free trial now. Regards, ADSelfService Plus Team Toll Free: +1-84-245-1104 Direct: +1-408-916-9890 Email: support@adselfserviceplus.com
Modification Rules - choose street relaying on Country
I would like to that users can first choose country from a dropdown list (AD parameter) and relaying on that choice later choose exact location from a dropdown list containing only locations in that country, and set it as a 'street' attribute in AD. Adam.
Background Colour varies behind the logo
Previously, I uploaded a PNG logo with a transparent background and it worked great. With a recent update the banner background colour changed to a dark grey and my logo looks like rubbish. I would update my logo to work with the darker background but the logon page will has a light background - I don't have a logo that will work in both situations. This is from our logon page: And this is the same logo after logging in: I'd like to see the banner background colour consistent - and ideally customisable.
ADSelfService Plus 5804 Released !!!
Hello folks! We are delighted to announce the release of 5804 with a few enhancements and issue fixes. Highlight: Korean language support: The end user and the admin portal can now be personalized in Korean language, besides the twenty other supported
Accounts that exist in multiple domains
Hi, We use AD Self Service to keep passwords in sync between two of our domains (separate forests). A subset of our users also have accounts in the second domain. In previous versions, staff could log in against the primary domain and AD Self Service would attempt to update their password in both domains. Now accounts that exist in both get an error "Multiple accounts are mapped for the same login attribute" and they have to prefix their username with their domain. Is there a way to replicate the
[ManageEngine seminar] Here's your exclusive invite.
Hello! Here is an exclusive invite for you to be a part of our US edition of Cybersecurity & Hybrid Identity Management seminars. Derek Melber, AD MVP and Chief Technical Evangelist at ManageEngine will explain Active Directory management and IT security best practices from across the globe. He will also share valuable tips to secure your IT environment from potential threats.
How to fight password theft using the multi-factor authentication techniques available in ADSelfService Plus
Issue: One of the main intrusion techniques used by hackers is password theft. In fact, stolen credentials ranked first in the top 20 data breach action varieties in 2018. Use case: Most organizations rely heavily on passwords to secure their network resources. However, users deal with their password saturated lives by often creating weak passwords and reuse them across critical business accounts. This makes stealing passwords the easiest way to get hold of network resources. Hackers only need to
[Webinar series] Learn what's new in our Active Directory and IT Security solutions.
Hello, We are delighted to send you this exclusive invite to ManageEngine's first ever What's new webinar series. Our product experts will explain in detail about all the recent features and enhancements in your favorite Active Directory and IT security solutions. Register now October 22, 23, 29 & 30 at 11 AM EDT Note: Register just once to attend all the sessions in this
Gina not work on windows server 2008 or 2012
Hi everybody. We install ADSlefService on a server and Gina on all windows 10 (our clients) and other severs (2008 & 2012 & 2016). Gina is loading and working well on all windows 10 (show 2FA methods and accept tokens successfully) But Gina is not working on none of our servers: >after enter username and password on login page, Gina App box is loading as images i attached bellow one by one (1 then 2 and then 3). we turn off firewall and antivirus and also turn off "IE enhanced security" but nothing
Google vs. Microsoft Authenticator
Is there anyway to change the title of "Google Authenticator" to just say "Authenticator App"? I have tested this and both the Google and Microsoft Authenticator apps can be used interchangeably. Users already have authenticator apps on there phone and I would rather just present one option and let the user use the app currently on their phone. By putting the brand name in the option it will make some users think that they can only use one or the other. There are other authenticator apps out there
ManageEngine's podcast series is now live. Subscribe now!
Hello, Have you ever imagined listening to your favorite IT security expert discuss the ways you can enhance the security posture of your environment on-the go? Now you can! We're thrilled to announce the launch of our weekly podcast series where our security experts, including Derek Melber, Active Directory MVP, will present their take on a wide range of IT security topics. Subscribe now By subscribing and listening to
Off Site Log In Error
We have several laptops running ADSelfService Plus client. When they are off site they receive this error: "Could not connect to the ADSelfService Plus server or Domain Controller configured in ADSelfService Plus is Down. Please contact your administrator" These are domain computers that can successfully log in on site. We have had some success recommending users connect to their home wireless at the log in screen, but for several users, even when they connect to their home wireless at the log in
Change Password Audit Report not updating
Hi, I've just had an update catch-up moving from build 5511 to 5803. I've done a test password change, which appears to have worked but it doesn't show up in the Change Password Audit Report.
ADSelfService Plus 5803 Released !!!
Hello folks! We are delighted to announce the release of 5803 with a few issue fixes. Issue fixes : All untranslated UI text are now localized for all the languages supported by ADSelfService Plus. Issue which displayed the error message "Sorry, the page you requested was not found," when manually initiating multiple GINA/Mac/Linux logon agent installation processes. Issue in Password Expiration Notifier Tool which failed to accept the DisplayName in the From Mail address of Mail Server settings.
Image not showing up in expiration notification email
I'm having an issue with the password expiration notifier tool. I've inserted a company logo image into my notification emails, however when the email is sent, the image shows up as a broken link inside the email. I've tried inserting the image as both a PNG file and a JPG file.
[ManageEngine Free Online Training ] Register now for our ADSelfService Plus training series.
Hello, ManageEngine is back again with another series of online workshops to help you make the best use of our integrated password management and single sign-on solution- ADSelfService Plus. This free live online training will be your guide to eliminate password management troubles while helping you get a better hang of using the solution. The benefits don't just end here. By attending all the sessions in this series you can take up our MECPA certification test for free.
New Install ADSSP - Sorry,the page you requested was not found. Back | Sign Out
I have a brand new install of ADSSP. There is nothing else installed on the server. I have managed to get it to load, and install it as a service. When i try to load the console on the server or remotely the page authorization.do shows the error Sorry,the page you requested was not found. Back | Sign Out. Most of the fixes i have seen for this related to builds from 6+ years ago and I am not sure if the steps still work, But if they do, i added 8443 as an SSL handler and it gave me a protocol error.
Do you use PowerShell scripts to notify users of password expiration via email?
Most IT admins use PowerShell scripts to send password expiration notifications to users' email addresses configured in Active Directory. However, if admins want to send or schedule multiple email notifications, PowerShell scripts might be of little help. ADSelfService Plus' Password Expiration Notifier, on the other hand, enables IT admins to set up a scheduler to send phased SMS and email alerts to users from an easy to use interface. It can also send email alerts for soon-to-expire accounts as
AdSelfService App
I’ve enabled fingerprint scanning on the ADSelfService app but it’s still asking the user to enter security questions to change my password. Is there a way to disable users who have fingerprint scanning enabled from having to enter security questions as well when changing password?
New self service page
is there any way to hide the user profile picture for all users as well as the manager and reports to fields. We do not use profile pictures and people will just complain that it is blank. We also use the those fields for technical things so they do not always show what users expect.
New Installation
Hi! We're trying to implement ADSelfService Plus for the first time. We're having a heck of a time using the product. We have had very inconsistent results. I'm curious if anyone else has had difficulty getting the product running? Would you be able to provide any insights? Does anyone know of a way to get level 3 support with the product? Any help/comments/suggestions would be appreciated! Thanks, Scott
[ManageEngine Netherlands seminar] Here's your exclusive invite.
Hello! ManageEngine's Cybersecurity & Hybrid Identity Management seminar is happening in Amsterdam, Netherlands on Sep 3 and here is an exclusive invite for you. Derek Melber, Microsoft MVP will explain how you can safe-guard your network from cyber threats, and get insights on the best practices for managing and securing a hybrid environment. Register now Date : September 3 Location
ADSelfService Plus 5802 Released !!!
Hello folks! We are delighted to announce the release of 5802 release which covers few security bug fixes. Fixes: A minor text alignment issue while displaying the custom password policy during password change/reset is fixed. An injection vulnerability in the Windows and Linux login agent is fixed. New to ADSelfService Plus? Download the fully functional 30-day free trial now. Regards, ADSelfService Plus Team Toll Free: +1-84-245-1104 Direct: +1-408-916-9890 Email: support@adselfserviceplus.com
[ManageEngine Webinars] Say goodbye to weak passwords with ADSelfService Plus’ password policy.
Hello! We can help you identify users with a weak password but how can you prevent users from using weak passwords? <Register Now> Date: Aug 22 Time: 2 PM BST | 11.30 AM IST Learn about the limitations of Active Directory password policy, enforce a customized more granular password policy for both on-premises and cloud applications, and improve password
Build 5800 - Some users cannot change password
I am running Build 5800 and I see the following error in my serverOut log: Throwing Native Exception: user_cannot_change_password_flag_on_ad The users who receive this error are notified int he application that they may not have permissions to change password. I have verified with a couple of them that they can successfully change the password from their desktops using CTRL+ALT+DEL I have tried a number of things to correct this error, but at this point, I would say it might be a bug in Build 5800.
New Login Screen
Since updating I've noticed the admin login page has changed from "https://domain/adminLogin.cc" to "https://domain/authorization.do" and includes a new login page. However, our normal users are still redirected to "https://domain/showLogin.cc" and are using the old login page. Is there anyway to update the normal user login page to look like the new admin page?
[Free Online Training] Register now for our ADSelfService Plus training series.
Hello, ManageEngine is back again with another series of online workshops to help you make the best use of our integrated password management and single sign-on solution - ADSelfService Plus. This free live online training will be your guide to eliminate password management troubles while helping you get a better hang of using the solution. The benefits don't just end here. By attending all the sessions in this series you can take up our MECPA certification test for free.
[ Exclusive Webinar] Say goodbye to weak passwords with ADSelfService Plus’ password policy.
Hello! We can help you identify users with a weak password but how can you prevent users from using weak passwords? Join webinar Attend this webinar and learn about the limitations of Active Directory password policy, enforce a customized more granular password policy for both on-premises and cloud applications, and improve password security
Cannot start ADSelfService Plus service
The ManageEngine ADselfService Plus service terminated with the following service-specific error: %%4294967295
DEFECT: ADSelfService Plus SSL Tool does not accept multiple SAN names.
When using the SSL Tool to create a CSR I cannot enter multiple comma separated SAN names in the SAN Name input box. Doing so results in the error "SAN Name must start with a letter and end with a letter or digit. The remaining characters can be letters, digits, or hyphens." The SAN name input box should behave like log360's SSL tool and allow a comma separated list of SAN names, otherwise those of us who use internal CA's cannot add both servername.mydomain and servername to the certificate and
Password Complexity Checker
Is there a way a user can check if their password is considered strong using the rules we set within Self Service? If not could this be added as a feature request? It would be useful for users to be able to 'test' their password before changing it or resetting it so that tehy know it is considered strong.
ADSelfService Plus 5801 Released !!!
Hi there, We're delighted to announce the release of 5801 build which offers two-factor authentication for macOS. Highlight: Two-factor authentication for macOS: Add an extra layer of security to macOS logins by enforcing two-factor authentication. Choose from fourteen authentication methods including fingerprint authentication, SMS/email verification, RSA SecurID, and DUO Security. New to ADSelfService Plus? Download the fully functional 30-day free trial now. Regards, ADSelfService Plus Team
Next Page