Error Code MFA-041
Hi, Every once in a while we get a users complaining they can't login to their Windows device getting error code MFA-041, typically this is when they are working remotley and not connected to our VPN. I'm able to gte round this by issuing an uninstall
Back to Home link question
I saw there was a question 5 years ago about this, so I was wondering if there was an update on it. Is it possible to change the 'Back to Home' link after resetting the password?
Remcom.exe flagged as malicious
Dear Support Team, our AV solution flagged Remcom.exe from version 6101 as malicious - PUA Application.RemoteAdmin.RLH. A VirusTotal scan shows that this is not an exception: https://www.virustotal.com/gui/file/d7a923357aea4f9d4e65d43d3f800fa4f3b766a825be63d798f5ff35721a462a/detection
Language MFA Offline
Currently, I don't see the feature to modify the language for MFA Offline. I think this is a great idea to optimize the language for users. I sincerely hope this will be implemented as an essential feature for you to develop
Support for Ubuntu LTS 22.04 and/or 24.04?
With the latest update supporting Centos 8/9, is there an ETA for when support for Ubuntu (and by extension other Ubuntu-based flavors) beyond the current supported version of 20.04 LTS will come? This version of Ubuntu is reaching end-of-life and will
ADSelfSevice Plus 6514 supports MFA for popular Red Hat RHEL distributions
Hello Everyone, ADSelfService Plus' latest build, 6514, has been released with the following enhancements and bug fixes: Enhancements ADSelfService Plus now supports MFA for logins to Red Hat (versions 8.x to 9.x) and Rocky Linux (versions 8.x to 9.x)
How to install digicert wildcard .cer
I've obtained the .cer file from Digicert but dont know what commands or where to go with a Digicert wildcard cert as it's not listed under the CA's on your SSL .pdf.
LDAPS
Hello, I want to configure my 389 Directory Server connector to use "LDAP SSL", how can I import the certificate of the remote LDAP Server ? Thanks
Passwordless MFA Windows
I've heard that ManageEngine technicians are currently implementing the Passwordless MFA feature for Windows and MacOS. Please let us know the estimated release time for the update with this feature, as many businesses in Vietnam are eagerly awaiting
How to keep the agent up to date?
Hi, What's the best method for keeping the agent up to date on client devices? At the moment I'm going into ADSS, selecting as many as possible and pressing the re-install button but we're limited to selecting 100 at a time. I was thinking doing it via
ADSelfService Plus 6515 offers security and performance updates!
Hello Everyone, ADSelfService Plus' latest build, 6515, has been released with the following updates: Enhancements 1Kosmos is now supported as an Identity Provider for both SSO and SAML MFA configurations. Learn more The Tomcat version has been upgraded
License count discrepancy
I was getting ready to disable stale users to free up licenses when I noticed that there is a huge discrepancy between exported report of licensed users and the license consumption as displayed when I click the License Info dropdown menu. In my case,
ADSelfService Plus 6513 offers key enhancements & more
Hello Everyone, ADSelfService Plus' latest build, 6513, has been released with the following updates: Enhancements Support for Smart Card Authentication using USB devices like YubiKeys and PIV cards has now been extended beyond the ADSelfService Plus
Microsoft Authenticator Account Name
Hi, Is it possible to change the name of the profile added to Microsoft Authenticator when users enroll in ADSS? At the moment when I can the QR code the account is added as "ADSelfServicePlus" then the users username etc. It would be great if it was
SHA256
Hi, In a previous ticket, I had to reinstall my test environment from scratch because it was corrupted during an upgrade. However, during the reinstallation, I lost all database settings as it's from scratch. But we need to configure SHA256 password synchronization
Users cannot open their mailox after I have installed ADsspOWAIISModule
Hello, As part of our testing environment, I installed the ADsspOWAIISModule on an Exchange 2016 server to evaluate the implementation of multi-factor authentication (MFA). Since the installation, users have been unable to access their mailboxes. An error
Automatic Updater for AD Self Service Plus
Is there an automated updater for this software? I need to make sure we are covered as soon as possible for any zero-day exploits out there
High Availability Licensing and Server Support for ManageEngine
ello, I would like to inquire about the High Availability (HA) setup for the following ManageEngine products: Self-Service Portal Specifically, I would like to know: Does setting up High Availability for these products require an additional license, or
The update script ADSelfService Plus
Hi! Is it possible to automatically find a new update and install it? I'd like to automate the process. The Powershell script issues an error during execution, I suspect that the Update Manager cannot take the .ppm update file. Write-Log "Launching the
How can you add other MFA methods to default admin account?
It seems like it forces the admin account to sign up for Q&A MFA only and there's no way to add other methods. I've set up other methods for domain users such as authenticators. Is there a way to do it for the default admin account too?
Get Ready! Shield NxG 2025 IAM & Cybersecurity Seminar Coming to Seattle, San Jose, Dallas, and Orlando!
Hello! ManageEngine is back with its next-gen IAM & Cybersecurity event, Shield NxG 2025 happening in Seattle, San Jose, Dallas, and Orlando! Join our senior technology evangelists as they share insights on securing, managing, and auditing hybrid IT infrastructures.
Get Ready! Shield NxG 2025 IAM & Cybersecurity Seminar Coming to Calgary & Montreal!
Hello! ManageEngine is back with its next-gen IAM & Cybersecurity event, Shield NxG 2025 happening in Calgary and Montreal! Join our senior technology evangelists as they share insights on securing, managing, and auditing hybrid IT infrastructures. 📍
Unlock IAM Expertise at Our Dublin Workshop – Register Today!
Hello! We are excited to invite you to our first-ever ManageEngine Identity and Access Management (IAM) Product Workshop in Ireland! Join us on May 20, 2025, in Dublin. This is a unique opportunity to enhance your IAM expertise, engage with our product
Get Ready! Shield NxG 2025 IAM & Cybersecurity Seminar is Coming to Kolkata, Hyderabad, Bengaluru, and Chennai!
Hello! ManageEngine is back with its next-gen IAM & Cybersecurity event, Shield NxG 2025 happening in Kolkata, Hyderabad, Bengaluru, and Chennai! Join our senior technology evangelists as they share insights on securing, managing, and auditing hybrid
[SEMINAR] Join us for our IAM and Cybersecurity seminar in Beveren on May 6, 2025—register now!
Hello, ManageEngine is back with its iconic IAM & Cybersecurity event, Shield NxG 2025, happening on May 6th at Beveren, Belgium! From recognizing the critical role of IAM and SIEM solutions in this era to leveraging them to empower your organization,
Problem with Web UI MFA Enrollment - Invalid request
Hello! I configure Adselfservice Plus server with SSL + nginxproxymanager to use full domainname with letsencrypt Problems is only with Web UI MFA Enrollment Mobile phone Enrollment - Working! Windows PC client MFA - Working!
Enrollment during GINA logon
Hi, We're trying to use the ADSelfService_Enroll.hta script to force/remind users to enrol in ADSS but are having a lot of problems running it. Typically we're met with the message that the "server unreachable" when the server is in fact reachable, all
Problem with Web UI MFA Enrollment - Invalid request
Hello! I configure Adselfservice Plus server with SSL + nginxproxymanager to use full domainname with letsencrypt Problems is only with Web UI MFA Enrollment Mobile phone Enrollment - Working! Windows PC client MFA - Working!
UpdateManager.bat GUI graphical issue
When I launch UpdateManager.bat the GUI is unreadable as if there was a refresh problem. ADSelfService Plus - v. 6.5 - 64 bit - build 6510 (also previous version)
"reset password"doesnt appear in login screen
Hello, After installing the latest Client Software msi we do not get the line "reset password/unlock account" under the user's password. How can we get it there? When we open the "C:\Program Files (x86)\ZOHO Corp\ADSelfService Plus Client Software\ADSSPDesktop.exe" file it does work and shows us the login page. Registry settings: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\ZOHO Corp\ADSelfService Plus Client Software] "PreSharedKey"="" "Version"="4.2.9" "VpnDisconnectCmd"=""
Ports
Hi there, I am sure this has been asked before but an curious as to why all these ports need to be open? Ports Protocols Services Direction 135 TCP RPC Inbound and outbound 389 TCP and UDP LDAP Inbound and outbound 636 TCP LDAP SSL Inbound and outbound 3268 TCP LDAP GC Inbound and outbound 3269 TCP LDAP GC SSL Inbound and outbound 88 TCP and UDP Kerberos Inbound and outbound 53 TCP and UDP DNS Inbound and outbound 445 TCP and UDP SMB Inbound and outbound 25 TCP SMTP Inbound and outbound 464 TCP and
Free edition email confirmation
Hello, I'm looking to use ADSelfService Plus free version for a limited temp project with ~25 users who will need to auth against a temp AD environment. ADSS will be internal-only, not public. Users will not be on AD bound machines, so I just need the
Reset admin password
Guys, Just wondering how to reset the password for the default adselfservice 'admin' account. I think I set this when installing the product but don't remember! Cheers
ADSelfSevice Plus build 6511 fixes an account takeover vulnerability
Hello Everyone, ADSelfService Plus' latest build, 6511, has been released with the following issue fixes: Issue fixes An account takeover vulnerability (CVE-2025-1723) caused by session conflicts has been fixed. Learn more. The push notification certificate
Custom message to users
Right now for users who have not passed onboarding, when trying to authorize, both Cisco Any Connect and Exchange return an error that the username or password is incorrect. Create a custom message if the user fails onboarding and attempts to authorize,
Sound in iPhone Notification
Greetings, Currently there is no sound (alert) when a notification arrives in iPhone devices. Kindly consider implementing this feature. Best regards, Theo
Password reset failed
When resetting the password via email, after entering the verification code and the corresponding answer, it will prompt 'You do not have permission to perform this action'! How to view the log?
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Hi, We get error after applying rapidssl .cer certificate. I have followed this ssl guide https://download.manageengine.com/products/self-service-password/adselfservice-plus-ssl-installation-guide.pdf. Same error with chrome and IE. How to fix this problem?
Multi-Factor Authentication on endpont - Not Working
Hi, I’m in the process of enforcing MFA enrollment and MFA on our servers/endpoints using ADSelfService Plus. After completing the configuration and running some tests, the GINA application is triggered. However, only the Reset Password/Unlock Account
Error code: ERR_SSL_PROTOCOL_ERROR
Hi, I am getting the following error when using Chrome to access my ADSelfService Site. Error code: ERR_SSL_PROTOCOL_ERROR I have already added the sslProtocols="TLSv1" to the connector, but I still get the error. On SSL Labs check, I get the following errors The server supports only older protocols, but not the current best TLS 1.2. Grade capped to B. This server accepts the RC4 cipher, which is weak. Grade capped to B There is no support for secure renegotiation. The server does not support Forward
Next Page