Addressing the issue of remote user password reset management with ManageEngine ADSelfService Plus
ADSelfService Plus enables work-from-home (WFH) and remote users to reset Active Directory (AD) passwords remotely so that they can accomplish their work without interruptions or security concerns due to password issues.
ManageEngine ADSelfService provides the following features to assist with the management of remote users and their passwords:
- Enables remote users to reset their AD domain passwords and update local cached credentials.
- Sends password expiration notifications to users and enables them to easily change their passwords from a web browser or a mobile app.
- Adds an extra layer of security by implementing two-factor authentication for remote desktop users.
Resetting Passwords for WFH and Remote Users
ADSelfService Plus supports self-service password reset for WFH and remote users by enabling users to reset Windows password from their own machines and updating the cached credentials through a compatible VPN client.
For more details, click here.
For more details please click here.
Password Expiry Notification
Password expiration is another major reason why remote users are unable to access network resources or get locked out of their accounts. ADSelfService Plus supports sending password expiration notifications to remote users through email, SMS, and push notifications. The notification is completely customizable, supports attachment, can be sent every day, or on particular days, and even be emailed to users’ managers to make sure the users reset their passwords before expiration.
Remote Desktop Two-Factor Authentication (2FA)
Another challenge with a remote workforce is to ensure security during remote desktop activities. ADSelfService Plus supports 2FA for local and remote desktop Windows logons. Admins can force 2FA for all users or only to remote desktop users by configuring organizational units (OUs) and group-based policies in ADSelfService Plus. They can also choose from 15 different authentication methods, including biometrics, YubiKey, Google Authenticator, SMS and email-based OTP, and push notification authentication.
When integrated with the reverse proxy features of ManageEngine AD360, ADSelfService can be made securely available for use by remote users over the public internet.
If you need more information regarding ManageEngine ADSelfService or have any questions please contact us here.
This article is relevant to:Active Directory
Other recent articles in the same category
You may be interested in these other recent articles
9 June 2022
ManageEngine’s new low-code application development tool Creating an application, building one and deploying it can be expensive and time consuming as you have to make…Read more
Update on the recent Apache Log4j2 vulnerability – Impact on ManageEngine on-premise and Zoho cloud products
14 December 2021
A high severity vulnerability (CVE-2021-44228) impacting multiple versions of the Apache Log4j2 utility was disclosed publicly on December 9, 2021. The vulnerability impacts Apache Log4j2…Read more
10 September 2021
When purchasing a ManageEngine product it will either have been supplied on a subscription basis or it would have included an initial Annual Maintenance and…Read more