New Technician from Domain?
Hi @all, Whenever I try to choose a new technician from our domain, all i get is a red bordered square and that's all what happens. Maybe you can help me? Here is a screenshot that shows the issue.
Blank display - ADSELFservice plus client software
Whenever user trying to reset / unlock password we will get blank display Port no and URL is correct, same has been tested at other site its working what could causing this issue.
Windows 10 with GINA installed, can't login as 'Other User"
I have a problem where if I install ADSSP GINA onto a Windows 10 machine and try to login as "Other User", that as soon as I enter a single character (no matter what it is), the logon screen immediately resets and goes back to the splash screen with the time. If I uninstall ADSSP from the machine, everything works normally and I can use "Other user" to log in as anyone. Is there a known fix for this? We are on build 5318.
ManageEngine AD Seminars - Coming to the UK in February & March (Edinburgh & London)
Just a quick heads up to all the UK based users of ManageEngine AD Tools. Seminars are scheduled to take place in Edinburgh & London (27th February & 2nd March) These seminars will be an opportunity to... Learn about the next-gen AD management trends and techniques Know how to configure and monitor the critical security setting of your AD environment Know about constructing email alerts, to be notified about changes to key security settings Consult with our AD experts. Discuss your Active Directory
Did you know - How to customize Logon-to Domain List?
Does your environment involve working with multiple domains? Make it user friendly by listing the domains, for your user, to choose from. ADSelfService Plus gives you, the Administrator, the liberty to customize the end-user Logon page. You can create a drop-down domain list in the user logon page to help the user choose the domain he wishes to log on to. How to Configure? Log in as an Administrator1. Navigate to Admin Tab 2. Click on Customize --> Logon Settings --> General 3. Enable the Show ‘Log
LogJam, RC4 and Forward Secrecy
When I run a security test on my ADSelfService Plus website using https://www.ssllabs.com/ssltest, I get the following errors: This server supports insecure Diffie-Hellman (DH) key exchange parameters (Logjam). Grade set to F. This server uses RC4 with modern protocols. Grade capped to C. The server does not support Forward Secrecy with the reference browsers. I can always correct these if I'm running IIS or Apache. However, I can't find the SSL configuration pages anywhere in the ManageEngine install
Forcing ADSSP to get Display Name instead of Full Name when end user try to selfupdate attributes
Hi All, I'm working with ADSSP and I have a Challenge. In fact, In Active Directory logon name and full name are set as numbers and this cause a problem when an end user try to update his "Manager Attribute" he can't Know what to choose since he doesn't know his managers' ID, it will be great if the name is displayed. So, is it possible to force ADSSP to get the Display Name instead of Full name? Regards Rochdi
Admanager plus
We use admanager and admanager plus. I have a user that was in the self service password reset but we deleted her so she could remake her account. Usually what happens is they log back into the self service portal and they can create their credentials again so they can use it.. this time instead they are getting "they have been restricted" and are no longer listed as an enrolled user and no longer showing as un-enrolled simply just gone. They are still active in AD manager and we have re-synced self
3rd Party Apps/MS SQL/API
Hello! I'm a potential client, but I have a question in regards to Password Sync. Does it support home brewed apps with SQL DB's or apps that can handle POST? Thanks! I tried searching but didnt find a definitive answers and from the demo I only see 12 apps. Including AS400.
Users can no longer login to ADSelfService after domain account attached to service was disabled
One of our accounts was compromised and we were forced to disable it. Later we found out that account was tied to the ADSelfServicePlus windows service. I have created a new account with the same permissions as the old one and attached that to the windows service but we still have the same problem with users not being able to login. There is no error it just reloads the login page. However, when I attempt from local host I get the long error listed below. Please let me know what I need to do to get
Other MS SQL/API Applications
Does the tool have the capability to integrate custom connections to home brewed applications with databases on MS SQL?
Resetting a users Security Question
I'm not sure if this is even possible but is there a way to reset the end users security question/s? Or alternatively, force them to setup their account again. I have had a number of users tell me that they are being asked questions that there is no way they would ever use. Thanks for any help
Mac Keychain
Does AD SelfService Plus password reset also reset the mac keychain password? So if a user chooses to reset their domain password from their Mac, will it also reset /sync that change to the local mac's keychain?
Password Reset Options: Disable Domain Email as the primary reset option
Folks, I just got off the phone with technical support. Here's the issue: 1) A user enrolls in Email verification for password reset. However, they don't get their domain email on their mobile devices. They enter an alternate email (because the domain email is of no use for a password reset). They go to the unlock screen, and the domain email address is the default (and it isn't obvious that there is a drop-down. We need some options here, because this generates as many calls to our service desk
Password Reset allows users to use previous password
Seeing how Password Reset is an admin function of AD(which requires no knowledge of the users old password), and change password requires the end user to know their password before they can change it, we noticed that users are able to click the "reset password" link on Self Service Plus and simply re-use a previous password. Setting a minimum age in group policy does nothing, as most users are smart enough to just reset it (rather than change it) just before it expires, so its already past the minimum
Connection problem with GINA link
Hello We have moved our ADSelfServices Plus from one server to another server. The Last server has 3 IP addresses and the new URL of the ADSSP console is https://password.mydomain.com (we changed the port from 9251 to the default port 443) So the console works fine, but the GINA link try to connect to http://password.mydomain.com:8888 The DNS record point to one of the 3 IPs and the good one. Everything works fine, only GINA displays an error when trying to connect to http://password.mydomain.com:8888
Sorry,the page you requested was not found. Back | Sign Out
Hi there, I'm testing the ADSSP product published behind a Netscaler Gateway. I've got it configured so that when you login, you're presented with a portal page with several icons that use the Netscaler CVPN option to reverse proxy the session. In doing so, I can open the login page and login. I can interact with the initial tab, but clicking on any other tab results in a page that has the following message on the screen Sorry,the page you requested was not found. Back | Sign Out I'm using Build
ADSelfService_Enroll.hta Assigned to AD Accounts That Had No Login Script.
We recently upgraded to the latest build of AD SelfService Plus (Version 5.3, Build 5324). After upgrading, approximately 24 hours later, any user that was in AD that did not have a login script assigned to their AD account got assigned ADSelfService_Enroll.hta as their login script. Can someone tell me if we did something wrong in the upgrade or why this happened? We recently added "&manualScript=true" to force enrollment. By adding that string to ADSelfService_Enroll.hta could that have made that
Problem with user password resets
I am using a test user that has an expired password, I am attempting to change it, and the old password is correct, and the new password follows all the rules I set, however it continually gives me the "Change Password Failed" notice. See attached.
Did you know - How to configure your GSM modem?
ADSelfService Plus allows you to send notifications and verification codes via SMS. To send a SMS, you can use any one of the following methods: GSM mode Clickatell (built-in support) Custom SMS gateway Configuring GSM Modem Modem requirements: A slot to insert a GSM sim card. Support for 7bit (GSM default alphabet), 8bit and Unicode (UCS2) encoding. The modem must be connected to the serial communication port. Steps to configure ADSelfService Plus to use your own GSM modem: Login to
ADSelfService Plus build 5325 released
Hello Everyone! We are glad to release the latest version of ADSelfService Plus – build 5325. This build features some enhancements and a bug fix. Enhancements: Two-factor authentication for ADSelfService Plus login can now be configured based on OUs and groups. To configure the settings, navigate to Configuration > Policy Configuration > Select Policy > Advanced > Login TFA. Option to exclude smart card users from password/account expiration notifications, and soon-to-expire password users and password
SMS Service provider help for Self Service Plus
So we are on the newest version of Self Service Plus and are in the testing phase, however, I am having a very difficult time getting ANY response from SMS service providers. It seems that ManageEngine severed ties with ClickaTell, so the ClickaTell addon is no longer available. So we tried doing a ClickaTell account(Trial initially) and using custom settings in SSPlus to test out, however, the clickatell URL of http://api.clickatell.com/http/sendmsg? does not work. ClickaTell claims that is the
Windows 10 Gina Not Working
Hello, We are installing the GINA manually on Windows 10 computers and the "Reset/Unlock" button never appears at the login screen. We are at loss for what may cause this. Thanks for any help!
Email push formatting, or lack there of.
I just recently did an email push for enrollment. There were no HTML controls in the box so I formatted it as best I could in plain text, when it went out, it looked so bad most of my employees either ignored it or actually called me thinking we got hacked and that it was a virus. Can the emails be configured with HTML to look better and perhaps match our internal memo emails? I am sorry if it is obvious, but I am unable to find anything. Thank you, Jim
Exculde users who's account has expired because of end of date
Hi, Is there possibility to add feature to exclude users who's account has expired because of end of date has been set? It can exclude disabled users but this would also be good feature. Br. Matti
Did you know - How to apply a wildcard SSL certificate in ADSelfService Plus?
Gone are the days when you have to purchase a separate SSL certificate for each subdomain. With Wildcard SSL, you can secure your primary domain and all subdomains with just a single certificate. This week let me take you through the steps to apply a wildcard SSL certificate (PFX certificate) in ADSelfService Plus. Step 1: Enable SSL in ADSelfService Plus Log in to ADSelfService Plus with admin credentials. Navigate to Admin tab -> Product Settings -> Connection.[Refer Image] Select Enable SSL
Can you edit the Enrollment Pop up ?
I want to be able to remove the 3rd item (self service directory update: update the changes in contact details yourself!) we aren't using this feature.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Hi, We get error after applying rapidssl .cer certificate. I have followed this ssl guide https://download.manageengine.com/products/self-service-password/adselfservice-plus-ssl-installation-guide.pdf. Same error with chrome and IE. How to fix this problem?
Verification Code Length
Currently ADSS send 8 digit verification codes We would like to make it 4-digit. Please advise.
Multiple ManageEngine software on the same server
Hi guys. A little help. I installed ServiceDesk Plus on my server and it's working, now I want the integration with ADManager, ADSelfService and OpManager but I need to install on the same server ServiceDesk was installed. When I start ADSelfService it throws an error saying pg_ctl.exe doesn't exist or is in use. ADManager works well and OpManager either. Can I install ServiceDesk and ADSelfService on the same service? How? Thanks for the help.
deleting an enrolled user
Hello, is there an option for deleting an enrolled user, can this be done via the admin console? thanks Ravindra
[Office 365 / Azure] Unable to reset password
Hi, I'm rolling out ADSS+ Pro to my users but have hit a major snag - password resets are not syncing with users O365 accounts consistently. The Reset Password Audit Report does not give too many clues, is there a way to view more information for these failures? My understanding is that AD changes replicated to O365 over ride the Azure password policies, so I'm not sure what the issue is (but it's a show stopper as of now):
Did you know - How to apply self-signed SSL certificate?
Self-signed(Internal CA) SSL certificate for ADSelfService Plus can be applied in five steps. They are: Step 1: Enable SSL in ADSelfService Plus Log in to ADSelfService Plus with admin credentials. Navigate to Admin tab -> Product Settings -> Connection.[Refer image] Select Enable SSL Port [HTTPS] checkbox. Click Save and restart ADSelfService Plus. Note: The default port for https connection in our application is 9251. Step 2: Generate CSR file Start ADSelfService Plus and log in as admin. Again,
ADSelfService Plus build 5324 released
Hello Everyone! We are glad to release the latest version of ADSelfService Plus – build 5324. This build features support for Cisco AnyConnect VPN client for cached credentials update and a major bug fix. Enhancements: Cisco AnyConnect VPN client is now supported for updating cached credentials. 64-bit version of VPN clients are now supported for cached credentials update. The photo attribute can now be set as ‘Read Only’ in self-update layout. Issue fixed: Vulnerability issue in self-password reset
redirect all http to https
how to i go about doing this? i cant figure out where to do this.
Partial Backup -Exclude Configurations
Hello Team, In my company we've the enviroments PRODUCTION AND TEST, How can I make a backup only users (registered and not regi..) from my PRODUCTION enviroment ? We wanna use this backup for my Test enviroment and we dont want to lose the configurations on test. thanks!
Windows 10 RDP Switch User Error
Good Day, May Inquire the error An authentication error has occured (Code: 0x800706be) using RDP switching user in Windows 10 ADSelfService Plus Client version 4.3 What could be the possible resolution, Kindly Advise. Thank you very much.
Automatically Read SMS Code - Android
Hi I've updated the Android App to version 1.1.9 to allow the SMS verification code to be automatically read by the ADSelfService Plus App. However the code still needs to be entered manually or pasted into the app to work. Is this not working as it should? Thanks
Cannot hide Organization Chart and Employee Search
Produkt Version 5.3 Build no: 5323 Admin -> Customize -> Logon Settings -> General -> "Customize User Logon Page" I want to hide Organization Chart and Employee Search because this should not be available Prior to a Login.. When I click "hide" I get the notification that I should go to "Configuration tag --> Employee Search" which is not present when I search for it. Can someone help me?
ADSSP on non-member server
Can ADSSP be installed on a non-domain member server as long as the appropriate firewall ports are open from that server to the domain controllers?
Next Page