Remote User Password Reset Management

Addressing the issue of remote user password reset management with ManageEngine ADSelfService Plus

ADSelfService Plus enables work-from-home (WFH) and remote users to reset Active Directory (AD) passwords remotely so that they can accomplish their work without interruptions or security concerns due to password issues.

Highlights

ManageEngine ADSelfService provides the following features to assist with the management of remote users and their passwords:

• Enables remote users to reset their AD domain passwords and update local cached credentials.
• Sends password expiration notifications to users and enables them to easily change their passwords from a web browser or a mobile app.
• Adds an extra layer of security by implementing two-factor authentication for remote desktop users.

Resetting Passwords for WFH and Remote Users

ADSelfService Plus supports self-service password reset for WFH and remote users by enabling users to reset Windows password from their own machines and updating the cached credentials through a compatible VPN client.

For more details, click here.

For more details please click here.

Password Expiry Notification

Password expiration is another major reason why remote users are unable to access network resources or get locked out of their accounts. ADSelfService Plus supports sending password expiration notifications to remote users through email, SMS, and push notifications. The notification is completely customizable, supports attachment, can be sent every day, or on particular days, and even be emailed to users’ managers to make sure the users reset their passwords before expiration.

Remote Desktop Two-Factor Authentication (2FA)

Another challenge with a remote workforce is to ensure security during remote desktop activities. ADSelfService Plus supports 2FA for local and remote desktop Windows logons. Admins can force 2FA for all users or only to remote desktop users by configuring organizational units (OUs) and group-based policies in ADSelfService Plus. They can also choose from 15 different authentication methods, including biometrics, YubiKey, Google Authenticator, SMS and email-based OTP, and push notification authentication.

Secure Deployment

When integrated with the reverse proxy features of ManageEngine AD360, ADSelfService can be made securely available for use by remote users over the public internet.

If you need more information regarding ManageEngine ADSelfService or have any questions please contact us here.