FBI, CISA, and CGCYBER strongly urge organizations ensure ADSelfService Plus is not directly accessible from the internet

FBI, CISA, and CGCYBER strongly urge organizations ensure ADSelfService Plus is not directly accessible from the internet

I am reading the following on https://us-cert.cisa.gov/ncas/alerts/aa21-259a

FBI, CISA, and CGCYBER strongly urge organizations ensure ADSelfService Plus is not directly accessible from the internet.

But then the solution isn't accesible for the users to change the password, this is not a real fix.

Is it safe to use this solution after patching to 6114?