What is the Password Sync Agent?   

Configuring the Password Sync Agent 

1. Install the Password Sync Agent (location: <installation_folder>\bin\) using the Command Prompt with admin credentials. In the installation wizard that appears, click Next.
2. Select the Protocol (HTTP or HTTPS) used in ADSelfService Plus.

3. Enter the IP address and port number of the server on which ADSelfService Plus is installed, then click Next.
4. In the Access key field, paste the access key provided in the ADSelfService Plus portal. You can obtain the access key from Configuration > Administrative tools > GINA/Mac/Linux (Ctrl+Alt+Del) > Password Sync Agent Installation. Click Next.

5. Once the installation is complete, you must restart the domain controller for the Password Sync Agent to start working.

Note: By default, the password sync agent will be installed in the following location: 

 In 64-bit systems: C:\Program Files (x86)\ZOHO Corp\Password Sync Agent 

 In 32-bit systems: C:\Program Files\ZOHO Corp\Password Sync Agent 

Making changes to the Password Sync Agent   

1. Right-click the Password Sync Agent icon on the System tray and select Edit Settings. The Edit Settings dialog box will open.

2. Enter the Server Name/IP Address, Port, Protocol (HTTPS/HTTP), and Access key used by ADSelfService Plus.
3. Click Save.

Upgrading or reinstalling the password sync agent   

• Uninstall the Password Sync Agent from the control panel.
• Install the Password Sync Agent from the new MSI.

 Note: Do not repair the Password Sync Agent directly from the new MSI file. 

Steps for creating a custom password policy for native password changes and ADUC password resets   

1. Go to Configuration > Self-Service > Password Policy Enforcer.
   
2. From the Select the Policy drop-down menu, choose the policy to which you want to apply the password policy rules.
3. Enable Enforce Custom Password Policy.
4. In this section, you can manage:
   

• Characters: Restrict the number of special characters, numbers, and Unicode characters used in passwords.

• Repetition: Restrict the consecutive repetition of a specific character or use of specific characters from the username (e.g., aaaaa or user01).

• Patterns: Restrict keyboard sequences, dictionary words, and palindromes.

• Length: Specify the minimum and maximum password length.

5. You can also enable users to bypass complexity requirements when the password length exceeds a predefined limit.
6. Enter the number of policy settings the users' password must comply with during self-service password reset and password change operations.
7. Enforce the configured password policy settings during password resets from the ADUC console and the change password screen.
8. To help users create passwords that comply with the enforced policy settings, you can display the password policy requirement on the reset and change password pages.