Default for multiple emails
Hi, We are still trialling the product and waiting for the license. Our email attribute is currently filled with the users work email address in AD. I have selected to use another attribute to capture users personal email, which we would like them to use when enrolling. In testing, I have it to show the current email but force users to specify an alternate email. this part seems to work fine. When a password is reset, the notification goes to the work email by default. Is there a way for the notification
UC highlight reel: Enrolling users in ADSelfService Plus
Once you've created self-service policies, the next step is getting your users to enroll in ADSelfService Plus. After all, enrolling users in the self-service portal is the key to reducing the number of password reset calls coming into your help desk. In this video, Derek Melber explains how administrators can automate the process of enrolling users or even set up forced enrollment to make sure end users register for an account.
This page can’t be displayed when trying to Access the AD Password Self Service Tool
After deploying the GINA/Mac installation some devices go to a "Page can't be displayed" where others connect to the tool fine and allow users to unlock/reset
ManageEngine ADSelfService Plus Online training - Register Now
ManageEngine ADSelfService Plus is back with its season 4 of free online workshop sessions. So, what's so special this time? We heard your feedback and took actions to satisfy your needs with all new and enhanced topics and agenda. ADSelfService Plus free online workshop series June 7 - July 6, 2017 Reserve Your Spot Join our product experts for an hour each week and delve deeply into ADSelfService Plus and know more about implementing the best practices of Active Directory password management
web page rendering errors and password reset download json file
Build Number : 5330 OS=windows server 2016 The service is behind an apache reverse proxy Problem 1. On many pages it looks like the wabpage is not rendering right like some css or javascript is missing. Problem 2. If windows has the much change password on next login enabled the user will be force to change password. That is fine the problem is after the user hits submit on the password change it returns a json page that and not a webpage.
Untrusted CA Root cert
Hey Guys, I followed the SSL instructions per the SSL guide but am receiving the Untrusted CA Root cert error (I used Comodo Essential SSL). It is showing as self signed instead of being issued by Comodo. I also edited the connector information in the server.xml file for the keystore file & password. Thanks, Shane Taylor
Default Login Page
Once a User signs in to the Portal it defaults them to the "Change password" Screen. How can i set this to default to the "Enrollment" Screen? I do have the Self Update option turned off so it forces Change Password as the next default page.....
UC highlight reel: Tips for effective self-service password management
Is your help desk overloaded with calls from users asking you to reset their password? In this video, Active Directory and Group Policy MVP Derek Melber explains how administrators can use ADSelfService Plus to empower end users with self-service password reset and account unlock options, all without compromising security. Derek quickly introduces ADSelfService Plus policies, the foundation of self-service password resets, account unlocks, and more. Learn how to configure security options, including
Error when user attempts to change a password
Running ADSelfService Plus, 5330, on an EC2 instance in Amazon Web Services. Using their managed Active Directory service. Most users have no problem changing their password but one user has issues and we see the following in the log file:Change Password Failed,hr:800704f1 Not sure what is going on here. Any insights?
ADSelfService Plus 5.4 released with an updated Apache Tomcat server!
Hello Everyone! We have released a new build of ADSelfService Plus–5400. What's new? 1. Apache Tomcat server used in the product is now updated to version 8.0. 2. Added an option to show/hide the “Reset Password/Unlock Account” tile from the Windows login screen. How to update? Update using service pack. New to ADSelfService Plus? Download the fully functional free trial now. Regards, ADSelfService Plus Team Toll Free: +1-888-720-9500 Direct: +1-408-916-9890 Email: support@adselfserviceplus.com An
User unable to login to Self Service
Hi, We have 1 user who is unable to login to self service. The screen just flickers and goes back to the logon screen. I have deleted and recreated their account, resent the enrolment email but they still get the same error. When we first moved to self service there were a few people who had the same issue and there was a fix issued for this to my colleague. I cannot ask that colleague what this was and so please can someone advise? Thanks, Charlotte
Users getting locked out after 1 failed attempt.
We are creating users in our AD and providing an initial login and password. They are then required to login to AD self service plus to enroll and change their password. User accounts are getting locked after one failed password. AD is set to 3 failed attempts, and the users do not have anything else connected since this their first time logging in. Please help.
unauthenticated source
version: 5.3 5330 application server is running on port 80 on an AWS EC2 instance there is an elastic load balancer in front of application that is terminating SSL. Traffic between load balancer and app is http. is works as expected in IE. when using chrome i get the secure url but when a user tries to login to enroll they get the below error "Mixed Content: The page at 'https://URL.com/showLogin.cc' was loaded over HTTPS, but requested an insecure form action 'http://URL.com/authorization.do'. This
Service account configured in this application has expired
Users are unable to sign into the application or use the tool as a result of this error. What is the source of this error?
Remove user Personalize link
Hi, Please can you detail where in the configuration options I can disable/ hide the user Personalize link; Many thanks, Scott.
Setting up Mobile App Deployment
getting error Name in SSL certificate conflicts with server name in URL.
Logon Enrollment Reminder still displayed in enrolled users
Hello Everyone, I have a couple of weird Problem which I can't figure out how to solve. The big one is that on some Notebooks the registered Users still get the "We see that you are yet to enroll with AD SelfService Plus. Please enroll now to avail yoursel for password self-service." message. The other one is that the window size of the message is all wrong. With diffrent shapes and sizes. See the attached files for examples. But for now I'd like to focus on the first, big problem. If we deploy
Incorrect URL for mobile phones
Hi, I have a trouble. When user try to reset password from mobile phone he can't do it. On last step he see "Sorry,the page you requested was not found". I think problem in URL https://ADSSP/m/authorization.do. What i need to do to resolve this issue? Regards, Anton
Change to https causing cert error
I cannot find in the documentation for ADSS how to resolve the cert error that is trying to go out to www.adselfserviceplus.com on all of our clients.
Did you know - How to configure Gmail as SMTP Mail server
ADSelfService Plus allows you to use Gmail as an SMTP-SMS server to send notifications, OTP etc to your users. Gmail offers it as a free service and can be used to send unlimited emails. Steps to configure ADSelfService Plus to use Gmail as your mail server: Login to ADSelfService Plus with the administrator credentials. Navigate to Admin -> Product Settings -> Server Settings. In the Server Settings page, click the Mail Settings tab. Enter smtp.gmail.com as the mail server and 587 as the port number.
Disable the error message when a user doesn't match in the second
We'd like to use the Password Synchronization feature so that a small set of our users with a matching account in another domain can keep both passwords matched. This functionality works but users that do not have an account in the second domain (90+% of our users) receive an error that the second password change failed. This causes a lot of phone calls, concerned that the process has failed. Could I request an option to disable the "There is no such user in this domain" error for synchronized domains?
Can we disable failed messages when a synchronized account doesn't exist?
Hi, We're looking to extend our implementation so that a subset of our users that have a second account in another domain can reset both passwords simultaneously using ADSelfService Plus. I.e. they'll login to ADSelfService Plus as they currently do, against the primary domain, but when they change their password the password on their matching account in the secondary domain is also updated. In testing this appears to work as expected however, the majority of our users don't have accounts in the
Permission denied. Please contact your administrator.
I've added a second Active Directory Domain to our Test ADSelfService Plus environment. I've also enabled Password Synchronization but it's giving me errors that I'm having trouble resolving. When I change the password of a user that exists in both domains the primary domain updates correctly but the second domain fails with an error "Permission denied. Please contact your administrator.". If I log in against the second domain and change the password it updates correctly. Everything I've been able
ManageEngine ADSelfService Plus Service will not start after installing and binding ssl sertificate
Hi, I have followed your instructions for installing and binding ssl certificate, so I installed the certificates, and modified the server.xml giving the following parametars at the end of server.xml file <Connector name="SSL" port="8443" minSpareThreads="25" maxThreads="150" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" debug="0" connectionTimeout="20000" acceptCount="100" keystorePass="Passw0rd!" keystoreFile="./conf/SelfService.keystore" sslProtocol="TLS" clientAuth="false"
ADSelfService - license file
Hi, We have been running the free edition of ADSelfService for a number of months now. We have just purchased a license. We received the license file, question is where to place the license xml file on the server. Does it go in C:\ManageEngine\ADSelfService Plus\licenses? Regards, Lewis
Week 5 of ManageEngine's free online training - 2017
We are overwhelmed by the support that you extended to our free online workshop series that started on April 18th. This week marks the end of another successful workshop series from our ADSelfService Plus team. To end it on a high note, this week, our product experts will help you know about the ways to provide Active Directory based single sign on for cloud apps and synchronize AD password resets/changes across multiple applications. ADSelfService Plus free online workshop series 18 April - 18
How to : Restart without reboot
The ADSelfService Plus web pages are un-available; since last boot. (applying Windows Updates on 5/5) I've stopped and restarted the manageengine service, but that hasn't helped. How can I bring down all services (DB, AppServer, etc) and restart cleanly without rebooting the server? Rich
Password reset option not showing on Windows 10
I have Client Version 4.3.4 and i am not seeing the Reset Password option on my login, if i call it from windows directly it works on the pc's i just have the icon missing on my login screen
The anti-clickjacking X-Frame-Options header is not present
We're currently assessing ADSelfService Plus and it is failing a few of our security checks. The following alert has been raised: Description: It was identified that the assets contemplated not include security controls adequate to combat the user clicks theft attacks (Click-Jacking). This attack is to load the hosted web application in assets covered with an opaque layer over it, with fake buttons and links, so that clicking on them, the user is actually inadvertently clicking in the web application.
Did you know - How to configure password synchronization for Salesforce.
This week let me walk you through the steps to configure password synchronization for Salesforce. This feature captures all users' Active Directory password resets and changes and automatically sync with their Salesforce accounts in real-time. Before you start configuring password synchronization for Salesforce, please ensure that API access is enabled in your Salesforce account. Also, a custom app must be created for ADSelfService Plus in Salesforce. Steps to configure password sync for Salesforce:
ADSelfService Plus 5330 released! Supports Windows Server 2016
Hello Everyone! We are glad to release the latest version of ADSelfService Plus – build 5330 Highlight - Windows Server 2016 support : Adds self-service password reset and account unlock support for Active Directory users in Windows Server 2016 domain. Existing customers can upgrade to the latest build by downloading the ADSelfService Plus Service Pack 5.3 SP 3.0 from the link below: http://www.manageengine.com/products/self-service-password/service-pack.html To download the complete new build, visit:
Is ADSelfServicePlus compatible with MS11-025?
A security scan of our ADSelfService server produced a report recommending that we install MS11-025. https://technet.microsoft.com/en-us/library/security/ms11-025.aspx Is ADSelfService compatible with this old patch?
GINA Update server name
Hi team, we had to re-name the server, ADSelfservice works fine bur GINA keep the previous server name, How can we update it over GINA?. Best Regards
How to install an existing wildcard certificate
I have an existing wildcard certificate. How do I install it? The SSL documentation only speaks of generating a CSR for a new cert. Do I need to generate a CSR anyway?
Week 4 of ManageEngine's free online training - 2017
This week on our ADSelfService Plus workshop, we will give you valuable insights on enforcing stronger password policies for Active Directory and other applications. ADSelfService Plus free online workshop series 18 April - 18 May, 2017 Reserve Your Spot Passwords are the first line of defence against cyber-crimes for any organization. One weak password is what it takes for a hacker to get hold of your network. An effective way to combat password hacking would be to implement a strong password
After installing ADselfService Client, button to reset password doesnt appear on login screen.
When we now install the client on any machine, the install completes without error, and no error in the event log, but the password reset icon is no longer appearing on the desktop near the logon fields. Tried uninstalling and reinstalling, reinstalling with admin rights, but havent been able to see the button to reset password. This is happening on Windows clients. Macs are working fine.
Week 3 of ManageEngine's free online training - 2017
This week's edition of free online workshop series will focus on how to alert end-users about their impending password/account expirations. ADSelfService Plus free online workshop series 18 April - 18 May, 2017 Reserve Your Spot You can still sign up today for free training on ADSelfService Plus! Attend this workshop and know more about: Notifying remote users about their impending password expiration via email, SMS and push notifications. Scheduling password expiration reminders for remote
ADSelfService Plus 5329 released!
Hello Everyone! We are glad to release the latest version of ADSelfService Plus – build 5329. This release fixes some major issues. Issues Fixed: Issue in using Cisco AnyConnect VPN for cached credentials update. Issue in logon client (GINA/Credential Provider agent) installation caused by configuring 64-bit VPN settings for cached credentials update. Issue in updating to the latest build using service pack. Issue in starting the product using the desktop shortcut icon. Issue in customizing the size
Exchange 2016 Support
When will Exchange 2016 be supported for the OWA integration?
Support for Exchange 2016
When will this product support the Exchange 2016 version of OWA?
Next Page