Hide "Enrollment" tab
Hello, How I can hide "Enrollment" tab from password change page? Regards, Anton
Password Expiration Notification images not display in Microsoft Outlook 2019
Hi all, I am new here and hope to get some help on the issue I'm facing at the moment. I've created a Password Expiration Notification and inserted some images. But when I received the notification the images not displaying. Below is the e-mail notification
MFA hardware token screen hangs
So we've had this on a few random servers out of the blue where you login via RDP, click Microsoft Authenticator and the screen just hangs until the timer runs out and kicks you out. But the timer never stops, if its at 1:54 and you click next, it hangs
ADSSP Audio Captcha
Hi, Is there a way to change the langage of the audio captcha ? Even if the browser default langage is French, the audio captcha is in english. Thanks Regards. Anthony
ADSelfService Plus Technician Login
I set up my Active Directory account to be a Technician, being that I have push notification MFA setup for my AD account and I was expecting the login to generate a push MFA verification. However, it didn't and I can't seem to find if this is an option.
ADSelfService Plus build 6211 now released with an important security update.
Hello everyone, This is to announce the release of ADSelfService Plus' latest build, 6211, with some important updates. Important update : Third-party requirement for NTLMv2 SSO: To enable NTLMv2 SSO in build 6211 and above, you have to manually download
VPN and 2FA
Hi, I am trying to configure ADSS vpn to enable password sync. We currently are using the Sophos Authenticator with our user VPN and want to use the same VPN for the password sync. Sophos uses OpenVPN and I can configure it to talk to our server, but
Customize notification message
Hi, We want to add an HTML button in the expiry notification message, but it always appears like a link. Is it possible to add a button in HTML or CSS ? Thanks. Regards
ADSelfService Plus build 6210 released with some enhancements and issue fixes
Hello everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6210, with the following enhancements and issue fixes. Enhancements: Notification Center: To ensure product security, a notification center has now been included
ADSelfService latest client agent and password sync agent versions
Namaste I would like to know where I can find ADSelfService latest client agent and password sync agent versions.
CVE-2022-42889 - Possibly exploitable in AD Self Server Plus
Dangerous hole in Apache Commons Text: https://nakedsecurity.sophos.com/2022/10/18/dangerous-hole-in-apache-commons-text-like-log4shell-all-over-again/ CVE-2022-42889 Recommended fix is to upgrade the .jar library to commons-text-1.10.jar or higher. AD
Options to Unlock User Accounts as Super Admin or Operator Missing
Hello there, As a part of our organization's security policies, we have restricted users from being able to unlock their own accounts. Our operators and super admin accounts do not seem to have the option to unlock these accounts within AD Self Service
ADSelfService Plus HTTPS - Applying wildcard certificate problem
Hi all, I'm using ADSelfService Plus 6.1 Professional - Windows server 2016 Standard , I want to enable HTTPS in Access URL and Connection Settings to enable SAML SSO configurations for applications. I have a wildcard certificate *.mydomain.com as .pfx
Connection to server failed.error 403
Hello everyone, I am evaluating in my adselfservice plus environment with MFA activated but when I log in to the machines with the agent installed, the MFA screen appears with the error: Connection to server failed.Error 403 Antivirus, firewalls disabled
ADSelfService Plus build 6209 released with some issue fixes
Hello everyone, This is to announce the release of ADSelfService Plus' latest build, 6209, with the following issues fixed. Issues fixed: An issue in the Restrict Users scheduler under License Management when there were different domains containing the
sms configuration %mobNo% variable usage
Hello, I have a particular question: my sms provider allows only one method of setting up sms via smtp protocol. To receive an sms the process is as follows: I must send an email to an email address provided by my provider with a message body formatted
Allow users to see when their password expires
I want users to go to the main page of our password tool, and see a "when does my password expire?" Is it possible to do?
Mobile App Authentication
Is there a way to make users authenticate when signing into the app on a new phone? Am I missing something? I've been testing with two phones. An android and an iphone. I enroll on the android and then sign into the iphone. It does not ask to authenticate
ADSelfService Plus' latest build 6201 released!
Hello everyone, This is to announce the release of ADSelfService Plus' latest build, 6201, with the following enhancements and issues fixed. Enhancements: Mac Agent support has now been extended to macOS Monterey. XLSX format is now supported for exporting
What is Password to restore database to another server ?
Hello everyone. I need to migrate a AdSelfService to another server. I make a backup with 'Auto Backup' option, but in restoredb.bat i need to enter a password, but I don't know what the password is. AdSelfService Plus Build: 6100
SMS not send
Hello everyone, I got a funny problem and i can't find a way to solve it. We have three different ways to enter mobile numbers to get the sms verfication code: - 01... - 00491... - +491... The first two types are working. in the "serverOut" logfile, those
The ADSelfService Plus mobile app now supports MFA for app login, Passwordless login and more!
Hey there! We are thrilled to announce the release of ADSelfService Plus' latest build, 6207, with some major updates to the ADSelfService Plus mobile app. Features: MFA for mobile app login: ADSelfService Plus mobile app logins can now be secured with
This site is not secure
Hi, I have just installed ADSelfService Plus in my test environment with the following settings: Installed ADSelfService Plus on Win 2019 (Domain Controller) Installed ADSelfService Plus Agent on the same Win 2019 (Domain Controller) Configured SSL and
What attribute determines if password is almost expired?
Hi All, I'm working with fine grained password policies in Active Directory, and we use this service to send out password expiration email reminders. I wanted to find out what ADSelfService Plus uses as an attribute for determining passwords that are
ADSelfService Plus 6206 Hotfix Release
Hello everyone, We are glad to announce the release of build 6206 with the following issue fixes: Issues Fixed : An issue with the functioning of the custom range filter in Audit Reports, when there were a large number of audit records, has now been fixed.
ADSelf Service plus
What do i need to do if i want my ADSelf Service plus to be accessible from the Internet for external users ? Currently the server is in my LAN for internal users. Management thinks that it is a good idea for users to be able to access this external
MFA authentication factors - default factor and mandatory factor
Hello, We would like to configure a default MFA authenticator factor (exemple : code send via email) the first time a user access the portal and after that a mandatory factor (exemple : OTP from an app or Yubikey), becasue we force a user to enroll a
ADSelfService Plus now extends MFA and Password Policy features to product technicians
Hello everyone, We are glad to announce the release of ADSelfService Plus' latest build, 6204, with the following enhancement and issue fixes. Enhancement: The MFA and Password Policy Enforcer features have now been extended to technicians who use
Auto-Enrollment Issues
I have set up AD to export our user OUs to a csv daily and trying to configure auto-enrollment to run daily using that csv. I'm getting the "invalid header" error if I try to run an import from that file location If I save that export to my computer and
Connect ADSelfService with Azure AD
Hi there, There is a way to connect directly to Azure AD without an OnPrem AD. I cannot connect ADSelf Service with Azure AD. If you have done this please share the steps. BR
Disable / Hide Applications Tab in ADSelfService Plus User View
Hi Guys, Need your help, how can i disable / hide Applications Tab in ADSelfService Plus User View?
Primary and alternative method
Hello everyone. I would like to ask if there is a way to set up a primary method to authenticate (eg. always use push notification) but when not available the user could click a link on the authentication page and select an alternative method. Thanks
ADSelfService Plus' latest build 6203 now released with an important security issue fix
Hey everyone, This is to announce the release of ADSelfService Plus' latest build, 6203, with the following issue fix. Issue fixed: A denial-of-service attack issue (CVE-2022-34829) in the ADSelfService Plus Mobile App Deployment API has now been fixed.
ADSelfService Plus' latest build 6200 released!
Hello everyone, This is to announce the release of ADSelfService Plus' latest build, 6200, with some issue fixes. Issues fixed: The communication between the Password Sync Agent and the ADSelfService Plus server has now been secured with the inclusion
Reset Admin portal but it doesnt work
We're using the free version of ADSelfService Plus to send out password expiration reminder emails. I changed the default admin password but when I do, the new password doesn't take effect nor does the old one work. Any suggestions on a fix?
adminLogin.cc not working
Using Chrome. When trying to administrate ADSelfService Plus with AD SSO enabled, I usually go to https://<domain>:9251/adminLogin.cc However, since updating to 6200, when I go to that address, I get the screen that says "ManageEngine ADSelfService Plus
Password Sync agent needs .net framework 2.0 and 3.5 to work. Both these have a CVE.
The article (https://www.manageengine.com/products/self-service-password/help/admin-guide/Application/sync/password-sync-agent-native-password-reset.html) says Domain controller should have Microsoft .NET Framework 2.0 or 3.5 for password sync agent
ADSelfService Plus Fixes and Enhancements [2022]
Release Notes for build 6212 (Nov 14, 2022) Feature: Hardware TOTP token support: Hardware tokens such as Protectimus hardware TOTP token and Deepnet Security hardware token can now be configured as a custom TOTP authenticator for identity verification.
MFA for Endopoint not working on unlock
I have MFA for endpoint setup on our servers and when logging in it functions without issue. But when a server is locked and then unlocked it does not prompt for MFA and lets the user right in. Is this expected behavior? If not what needs to be changed
OWA integration installation problem
1. I installed version 6.1 Build 6123 on Exchange 2019 CU12 on Server 2019 2. I downloaded the android app and was able to enroll the user 3. I verified I could log in to OWA. I got the forms login page, and entered a username/password. This worked 4.
Next Page