I'm curious to know if anyone has been successful with using this tool against Active Directory with a PSO Fine-Grained password policy?

I'm wondering if there is any way, we can configure ADSelfService Plus, to use something other than the Default Domain policy within AD.

We have several different types of password policies, we have multiple agencies which have different standards.

With that said, we utilize a method of password policy management, which is known as a PSO policy against Global Security Groups.

The group and the policy, determines what the password policy is. By default, we use the single Default Domain security settings, but this is only used as a 'fail-safe' to ensure that some complexity is enforced for all users of the domain.

IF you have a solution, please post it here. If not, I'd like to submit a request to ManageEngine, to consider the ability to adhere to the Windows server 2008 domain capabilities, such as this added AD feature.

Thanks!