How to remove the %Password% macro from reset password notifications in ADSelfService Plus

How to remove the %Password% macro from reset password notifications in ADSelfService Plus

Objective

This article explains how to remove the %Password% macro from reset password notifications in ADSelfService Plus. Including the %Password% macro inserts the newly reset password in plaintext into notification messages, which poses a significant security risk. Removing it ensures sensitive information is not exposed in email, SMS, or push notifications.

Prerequisite 

  • Administrative privileges in ADSelfService Plus

Steps to remove the %Password% macro

  1. Log in to the ADSelfService Plus admin console.
  2. Navigate to Configuration > Self-Service > Policy Configuration.
  3. Identify the self-service policy applicable to your users or domain.
  4. Click the Advanced icon next to the relevant policy, then navigate to the Notification tab.
  5. Select Reset Password from the notification types.
  6. In the Message field (for email, SMS, and push notifications), locate and delete the %Password% macro.
  7. Click OK to save the changes.

Validation and confirmation 

  1. Trigger a test password reset from a user under the updated policy.
  2. Confirm that the notification no longer contains the password. The message should only include your updated confirmation text.

Tip 

  • Use macros like %Username%%DomainName%, or %MailID% to personalize messages securely.

How to reach support                                 

If the issue persists, contact our support team here

      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • Google Workspace password reset

                      G Suite admins can enable users to reset their passwords and recover their accounts without admin support. ADSelfService Plus, an Active Directory (AD) self-service password management and single sign-on solution, offers the Password Reset feature, ...

                    • Configuring Duo Security for Active Directory password reset

                      Duo Security is an access security focused application that is primarily used for multi-factor authentication. One of the ways Duo Security can be used to verify users identities is using passcodes. Here, once the user has provided their username and ...

                    • Microsoft 365 password reset

                      The Self-Service Password Reset (SSPR) feature in Azure AD allows users to reset their passwords without going through the help desk. However, changes to users' Azure AD passwords are only synchronized with their on-premises domain accounts when ...

                    • ADSelfService Plus self-service password reset configuration: Reset & Unlock tab

                      Reset & Unlock tab The Reset & Unlock tab consists of settings related to the self-password reset and account unlock features. Learn how to configure these settings to suit your requirements. Here are the settings under the Reset & Unlock tab: Unlock ...

                    • Self-service password reset for Windows 7, 8, and 10

                      We've all had to reset a forgotten password at some point in our lives. But have you ever wondered what goes on behind the scenes when you initiate a password reset? Have you considered the security risks that can arise due to poor password ...

                      Related Products