How to perform a domain refresh in ADSelfService Plus and why it is required
Objective
This article explains what a domain refresh is in ADSelfService Plus, when it is needed, and how to perform it.
What does this article help the user accomplish?
- Ensures that the ADSelfService Plus Dashboard and Reports tab display up-to-date information from Active Directory.
- Instantly reflects newly created users, updated user attributes, or removed accounts in the ADSelfService Plus interface.
- If the Dashboard and Reports tab do not display any data, performing a domain refresh will update and restore the information.
Why is it important?
Active Directory changes may not be reflected immediately in ADSelfService Plus unless a domain refresh is performed. The system updates based on the frequency configured in the AD Synchronizer Scheduler. This delay can lead to the Reports and Dashboard displaying outdated or incomplete information.
Prerequisites
- Admin access to ADSelfService Plus is required.
- AD domain controller connectivity must be available from the ADSelfService Plus server.
- The AD Synchronizer Scheduler should be configured correctly to avoid overlapping refresh schedules.
Steps to follow
- Log in to ADSelfService Plus as an administrator.
- Go to Domain Settings on the top left corner of the portal.
- Click the Refresh (Update Domain Objects) button under the Actions tab. Select all the objects and click OK.
- Click the Schedule AD Synchronizer link on the top left corner.
- Ensure that the AD Synchronizer is set to run at an appropriate interval. It is recommended to schedule it to run once every four hours.
Validation and confirmation
- Check if newly created users and updated attributes are now visible in the ADSelfService Plus reports.
- Run a sample report from the MFA Non-Enrolled Users Report under Reports > MFA Reports and confirm that it contains newly created users.
Troubleshooting tips
Issue: Performing a domain refresh does not update the reports.
Resolution:
- Check network connectivity between ADSelfService Plus and the domain controller.
- Ensure the configured domain credentials are correct and not locked out.
Best practices
- Configure the AD synchronizer scheduler to run once every four hours.
- Regularly verify and update domain credentials to avoid authentication failures.
- Monitor network connectivity between ADSelfService Plus and the domain controller.
How to reach support
If the issue persists, contact our support team here.New to ADSelfService Plus?
Related Articles
Multi-factor authentication techniques in ADSelfService Plus
Let's take a look into the various authentication methods supported by ADSelfService Plus for enterprise multi-factor authentication (MFA). Why should you use MFA? Authentication based solely on usernames and passwords is no longer considered secure. ...How to enable Partial Enrollment for Active Directory users in ADSelfService Plus
Active Directory domain users need to complete enrollment with ADSelfService Plus before they can use the below listed features: Self-service password reset Self-service account unlock Endpoint multi-factor authentication ADSelfService Plus' logon ...ADSelfService Plus product startup issues
What do you need to know before troubleshooting You need to have administrator access to ADSelfService Plus. When you experience an error with ADSelfService Plus, check if these prerequisites are satisfied: Install ADSelfService Plus as a service ...Encryption and data storage in ADSelfService Plus database
Encryption in the ADSelfService Plus database ADSelfService Plus' database uses the following encryption methods to store sensitive data: Database Encryption method PostgreSQL AES-256-CBC Microsoft SQL AES-256-CBC The following sensitive information ...How to customize the Logon-to Domain List in the ADSelfService Plus?
Solution: Does your IT environment involve multiple domains? ADSelfService Plus gives you, the administrator, the liberty to customize the end-user logon page. You can create a drop-down list for the available domains in the user logon page to help ...