ADSelfService Plus' latest build 6121 released with some security fixes
Hello everyone, ADSelfService Plus' latest build 6121 fixes the following security vulnerabilities. Issues Fixed: A security vulnerability (CVE-2022-24681) which allowed XSS script execution in the reset password, unlock account, and user must change
Change Reset Password Screen to include custom text
We'd like to include a description of what Password Complexity means when people change their password (this screen). Whether it's a hover/alt text or a link for a descript or just inline with the rest of it. This would help avoid some help desk tickets.
Problem While Sending SMS
Hi when I want to send a test SMS in ADSelfService, the message "SMS sent successfully" will be shown. but No SMS will be sent and in Serverout0.txt log file i can see http url address page as html. Also I have tested SMS service with same parameters
Windows Logon TFA not working
I've carefully followed all the steps in this guide: https://www.manageengine.com/products/self-service-password/help/admin-guide/Configuration/Admin-Tools/GINA/windows-logon-tfa.html I've enabled SSL, setup a certificate and verified connectivity. The server and end computer are on the same domain and I've deployed the agent through the GINA Installation console page. Under the MFA section I've enabled the Endpoint MFA and the MS Authenticator. Logging on to my test box runs as normal; no 2FA.
GINA Other User option missing
With the GINA installed on my systems the "Other user" option is missing from the login screen is there a way to get this back?
LDAP Macros - manager ?
Hello, Is there a way to add the manager inside the macros to be used on a mail to warn users on their expiration of password ? Regards, Seb
Expiration Notification - Access URL is not hyperlinking
Hello, We have configured our instance to send Password Expiration Notifications, however, it is not hyperlinking the Access URL in the message. Anyway to resolve this? We have used the macro %acessURL% in the message to populate the url, its just not
Redirect to Enrolment
Hi, This may seem like a simple thing to achieve with forced enrolment but you know users. The only time many use the reset site is when their password has expired or they have locked it. We would direct the users to the URL (again) and they always
Procedure for resetting a User using Authenticator
Here is the procedure I use when there's a mismatch/error when usingt an Authenticator: 1) In the cellphone Authenticator, remove the User's account. 2) Run ADSS Reports / Enrollment Reports / Enrolled Users Report 3) Checkbox the User. A Disenroll/Trashcan
Log4j dependency removal's impact on RSA SecurID-based MFA
In light of the recent discovery of Apache Log4j library's security vulnerability (CVE-2021-44228), ADSelfService Plus released its build 6119 that completely removed dependency on the Log4j library. However, the Log4j library is required if you have
Clickatell text messages not going through consistently
Ever since we have implemented ADSelfService Plus with Clickatell text messages, the text messages from that service has been extremely poor. Sometimes but infrequently it works just fine but most of the time the text messages won't come or arrive so late that our screen times out before you can enter in the code. I have been round and round with support and Clickatell supposedly fixes something and things are better for a little while but shortly after things don't work again. This is very frustrating
Tell us what you think about ManageEngine ADSelfService Plus
We, at ManageEngine ADSelfService Plus, value our customer's views and experiences. Share with us your thoughts on ADSelfService Plus through a quick survey. Your feedback, good or bad, will be the key to improving the product. In this survey, you can
Users reciving duplicate email-id error when trying to enrol
Users the already have their email attributes configured in AD recieve the following when trying to enroll for SSPR functionality. "Duplicate email-id found. Kindly provide a unique one.' Is there anyway of either auto enrolling users that already have
Migrating ADSSP to new Server, different Postgres Versions
I am moving my ADSSP installation from one server to another and the postgres version on the existing server is 9.4.16 and on the new server is 10.15. Instructions say if these differ to contact support. Are there any additional steps when migrating
Configured Password/Account Expiration Notifications
Hello Support Team, We have tried to implement option "Configured Password/Account Expiration Notifications" in AD Self Service Portal. But, I found it is not working and I'm receiving report mail, which I have set as "Dear Admin, No reports available
How to initiate password sync?
Hello, How can I initiate password sync for some or all users? I use group membership as criteria to include users to policy. When I add an existing user to this group without doing anything else, it does not initiate password sync. How can I force this? Passwords are synced to Office 365. Thanks & regards, Vesa
Log4j vulnerability ?
Hi, I have 2 question in One please, - Can we delete the "Patch" Folder contents after applying the Patch. - I do not found the log4j library in the "/lib" folder, ( it's only on the Patch folder) is that normal ? So , do i have to warry about it and
How can I configuration Azure AD MFA
Hi, I want to use MFA for MS Teams application for security reasons. how can i enable it via AD Self service. thank you for all
MFA does not work (not there on enrollment page)
Hi, I'm evaluating the ADself service plus, mostly for MFA for endpoints. I create a new policy and in my policy choose an OU (where my machine is there) and an AD group which user X is a member of. Also I choose Microsoft and Google Authenticator for
Need to add Help manual on home page of ADSSP
Hello Support Team, Can we add a help manual (PDF format) to the home page of ADSSP? Since I'm not HTML savvy that I can modify the complete page altogether. But, adding a single link will help me. I have kept that help manual file in pdf format at the
[Log4j Advisory] ADSelfService Plus 6119 released to remove Log4j dependency
Hello Everyone, We would like to inform you that ADSelfService Plus build 6119 has been released to remove Log4j dependency. Issue fixed: Log4j dependency in ADSelfService Plus has been removed to ensure security. Is ADSelfService Plus affected by Log4j
Dont want users to register\enroll
Newby, How do you disable the feature where users have to register and pick a string of question\answer?
Change the Username field on the login portal
Hi, I would like it to be possible to change the username login field on the login page. This field shows now (according to browser inspect) a placehold which is username in grey. This gets removed once you type a value in here. I would like to change
When only one option during forget password select immediately
Hi, I would like it if it was possible that, when going to "Forgot Password" and only having one option available you still have to select this in the dropdown menu. It would be better if then this one option was already selected. Kind regards, Daan
Edit MFA from Administrator login
Would it be possible to be able to give administrators access to remove MFA factors from a User Profile? Or, automatically remove the factors that don't apply to the new policy I'd move them to, with a warning beforehand of course. Here's my situation,
[Tips & Tricks] How to synchronize the passwords of Oracle Database accounts with Active Directory using ADSelfService Plus?
Two weeks ago, we saw how ADSelfService Plus facilitated password synchronization between Zendesk and Active Directory. This week, let’s learn how to integrate Oracle Database with Active Directory for password synchronization using ADSelfService Plus. With ADSelfService Plus’ Real-time Password Synchronizer, update the password of users' Oracle Database account when their AD password is changed or reset. Thus the solution helps to reduce password related issues by ensuring that users have only
Install ADSelfservice plus on the same server as ServiceDesk plus
I installed ServiceDesk plus on a server, and it works. It is on port 8080. I tried to install ADSelfservice plus on the same server on port 8888. But it was not successful. Is there any special configuration to be done?
Is ADSelfService Plus affected by CVE-2021-44228?
Hello Everyone, As stated in the Title, is ADSelfService Plus affected by the log4j Vulnerability CVE-2021-44228 (https://nvd.nist.gov/vuln/detail/CVE-2021-44228) ? If I am right, ADSelfService uses Tomcat, not Apache? Thanks in Advance
log4shell: ADSelfService vulnerable (CVE-2021-44228)
Hello ManageEngine, I investigate all our Systems about CVE-2021-44228. One system is ADSelfService Build 6116. It uses Java, but log4j to? Is this system vulnerable? Is there a fix, patch or workaround for this?
cve-2021-44228 ADAudit and ADSelf Service Guidance
Hello, I wanted to check if these two applications were susceptible to the Log4j vulnerability and what we could do to mitigate if they were? Thank you!
ADSelfService Plus RemComSvc.exe is detected as a threat
Hello Support. The attached document informs that the exclusion of the RemComSvc.exe executable must be made in the antivirus for the operation of the ADSelfService Plus Agent: However, Trend Micro antivirus from a client company of ours is detecting the RemComSvc.exe file as a threat. For security reasons, our client will not make the exception of the RemComSvc.exe executable. We have the following questions: Why does the ADSelfService Plus agent need the RemComSvc.exe executable? Can the ADSelfService
Gearing up for 2022's password challenges with ADSelfService Plus
This year, the rapid adoption of hybrid and mobile working methods made managing and securing passwords particularly challenging. For example, employees on the move will not be connected to the organization's secure networks, and hence, their devices
remote connection into postgres db / summary report
our organization has a need to provide data for how many password changes, resets, unlocks were handled monthly. how can we configure the postgres db running on the selfservice so that we can log in remotely to run a query? alternatively, can manageengine
ADSelfService Plus' latest build 6118 released with a minor issue fix
Hello everyone, ADSelfService Plus' new build, 6118, fixes the following issue. Issue Fix : An issue in renewing the SAML certificate when ADSelfService Plus is the identity provider has now been fixed. How to update? You can update to the latest build
Option to choose OU and Group while configuring the Policy
Currently, while configuring the Policies we are able to see two options: OU and Group. By the current design, we have an "OR" between these two objetcs, so when we select one Group and one OU, the ADSS will get all the users inside the OU and all the
Blank page with ADSSP login script at logon
Hello, Some users are using XenApp desktop over Windows 2012R2, and when they logged in, they experienced a blank page which can't be close without killing the process. The blank page is the login script to ask users to register. Even if they killed the
TFA is not enabled for this user
I have had ADSelfService Plus deployed to all of our PCs so users can unlock their own account and reset their passwords. Recently, I have decided to enable MFA on any PC or server where a Domain Admin logs in. I have the policy set up and it works on
ADSSP Dasboard view doesn't display desired information
The ADSSP dashboard by default only shows the current month Audit Reports (i.e. Reset password, Unlock accounts, change password, etc) However, there is no option provided for the Admins to make it show the total usage of it in the entire year. It only
Opening a preventative ticket in advanced before upgrading builds
Hi, I was wondering before I do an upgrade on my build, am I able to open up a ticket in advanced in case anything were to go wrong during my upgrade? This is so that I would have a ticket number already established and I would bypass the initial waiting
ADSelfService Plus feature highlights from 2021
Season's greetings! With 2021 nearing its end, we are writing to take you through the top features introduced in ADSelfService Plus that make it a more comprehensive self-service password management, MFA, and SSO solution. Here are some of the major
Next Page