ManageEngine ADSelfService Plus is an integrated self-service password management and single sign on solution. This solution helps domain users perform self-service password reset, self-service account unlock, employee self-update of personal details (e.g., mobile numbers and photos) in Microsoft Windows Active Directory. ADSelfService Plus also provides users with secure, one-click access to all SAML-supported enterprise applications, including Office 365, Salesforce, and G Suite, through Active Directory-based single sign-on (SSO). For improved security, ADSelfService Plus offers Windows two-factor authentication for all remote and local logins. Administrators find it easy to automate password resets, account unlocks while optimizing IT expenses associated with help desk calls.
What problems does it solve?
Analysts state that 30% of help desk queries are related to password reset management and account lockout. ADSelfService Plus reduces the most critical password tickets that consume a substantial amount of help desk time by rendering a secure, reliable and robust web based self-service solution. End users can manage their passwords and update their personal details in Active Directory with ease. The solution secures remote and local logins to Windows with two-factor authentication.
Allow users to self-reset their domain password in Windows Active Directory on their own.
Let domain users self-unlock their Windows Active Directory account without IT assistance.
Offer an easy-to-use web interface for changing Windows Active Directory password.
Remind users of their upcoming Active Directory password expiration date via email, SMS, and push notifications.
Enforce fine-grained password policies for Active Directory that includes a password dictionary filter, a pattern checker, and more.
Provide users access to password self-service from the login prompts of Windows, macOS, Linux, Outlook Web Access, Citrix Web Interface, and SharePoint.
Authenticate Active Directory users with secure identity verification methods such as Google Authenticator and biometrics.
Enforce two-factor authentication for every Windows logon, including both remote and local logons, for improved security.
Allow users to force update their forgotten Active Directory cached credentials with self-service password reset.
Scouts for forgotten or expired passwords and locked out accounts, and schedules automated password resets and account unlocks.
ADSelfService Plus' mobile apps for Android and iOS devices help users perform password self-service actions from anywhere, anytime.
Ensure IT security by helping admins generate, schedule, and export audit reports as well as reports on password status.
While it’s impossible to recover forgotten or expired passwords in Windows Active Directory, you can empower users with self-service password reset capability.
Manage multiple GPOs in your AD by enabling/disabling, enforcing/unenforcing, managing GPO inheritance and linkages.
Implemeting ADSelfService Plus in your IT environment reduces IT expenses, improves security and the end-user experience, and creates a happy IT workforce!
Securely eliminate help desk tickets by combining self-service password management with multi-factor authentication, and ease the burden on your IT help desk.
Active Directory Self-Service
Offer a secure portal through which end users can self-update their Active Directory profile information.
Provide a self-service employee search tool that helps end users find their colleagues’ Active Directory profile information.
Display a detailed organization chart that helps end users find coworkers’ reporting staff and direct reports.
Help users take control of their mailbox with a self-service Active Directory groups subscription system that allows them to opt-in or opt-out of distribution groups.
Make sure every self-service action is monitored by routing users' requests to the help desk team for approval.
Manage Active Directory user profiles by forcing users to update their information when they log in to the user portal.
Allow users to access multiple enterprise applications with one identity using single sign-on.
Synchronize Active Directory password resets and changes with connected enterprise applications in real time.
Enforce granular password policies across Windows Active Directory and cloud applications such as Office 365 and G Suite.
Provide a secure single sign-on solution for all SAML-supported custom applications.
Provide secure access to cloud applications using two-factor authentication.
Allow users to reset the passwords of their accounts for enterprise cloud applications, including Office 365 and Salesforce, without IT assistance.
Provide secure Active Directory authentication for SAML-enabled enterprise applications such as Office 365 and Salesforce.