Release Notes

ADSelfService Plus Release Notes

Release Notes for build 5202 (Dec 2014)

Features & Enhancement

  • Now you have the option to enable CAPTCHA on the login page after a certain number of failed login attempts.

Issues fixed

  • Issue which prevented service account users from self-updating attributes even when they have sufficient rights.
  • Issue which added new users to the restricted users list because of no last logon time.
  • Issue which affected the dashboard UI when AD blocker is enabled on the browser.
  • Fixed an issue in password sync agent by excluding password capture from a new computer joined to the domain.
  • Issue which prevented the addition of Technician operation role when there is a large number of restricted users.
  • Fixed a bug that showed incorrect error message to users, whose accounts are locked out, when they try to log in to ADSelfService Plus

Release Notes for build 5201 (Dec 2014)


  • Introducing Password Sync Agent: Now synchronize native password changes (password change through Ctrl+Alt+Del screen and password rest through ADUC) in Windows Active Directory with the users’ associated IT systems and applications in real-time.

Release Notes for build 5200 (Nov 2014)


  • Multiple Login Options: Users can log in to the self-service portal with any AD attribute with unique value such as mail and telephoneNumber.
  • Now verify users’ identity by sending them an email containing a secure password reset/account unlock link.
  • Ability to restrict service accounts using license management to free up license count.

Issues fixed

  • Issue in self-update which displays incorrect value in the manager field.
  • Issue in automated password reset.

Release Notes for build 5116 (Nov 2014)

Issues fixed

  • Issue which disrupts GINA UI when caps lock is pressed while entering the password.
  • SSO issue in Chrome browser.
  • Issue in password expiry notification when it is configured for a group with a large distinguishedName.
  • Issue in password expiry notification delivery report which failed to show the delivery status properly.
  • Issue which ignores the default system language and displays the product only in English.
  • Issue in reports when they are generated for OUs containing special characters.
  • Issue in showing the status message during unlock account process when retry option is enabled.
  • Issue in linking accounts for password synchronization.
  • Issue in synchronizing passwords when force synchronization is enabled.

Release Notes for build 5115 (Oct 2014)

Issues fixed

  • Issue in sending password expiry notifications on specific days.
  • Issue in sending password expiry notification to unlimited users in Free Edition.
  • Issue in syncing Office 365 passwords when you are using an older version of Microsoft online services module.
  • Issue which syncs password with Active Directory even though the user's AD account is not selected during password reset or change.
  • Issue which displays incorrect user count in the security questions and answers report.
  • Issue which shows incorrect count in user reports under Dashboard.
  • Issue in notification delivery report where incorrect status is shown for enrollment notifications sent to users.
  • Issue which shows incorrect status message during self-unlock account if a domain is configured using insufficient permissions.

Known Issues

These issues will be fixed in our upcoming release.

  • GINA issue: In Windows Server 2003 and XP machines the GINA icon and its frame text will disappear when Caps Lock is pressed while entering passwords.
  • Translation issue: Some of the new features will have texts only in English.

Release Notes for build 5114 (Sep 2014)


  • Option for users to choose the language of their choice from the log in page itself.
  • OUs selected during report generation will now be preserved and reused for reports displayed on the dashboard.

Issues fixed

  • Issue in GINA/Credential Provider which failed to start the password reset/unlock account wizard from the logon screen.
  • Issue which prevented product administrators from editing Domain settings and generating Enrolled users report.

Release Notes for build 5113 (Aug 2014)


  • Crop Photo option – Users now have the ability to crop their photos before self-updating them in Active Directory.
  • New macros added – dateTime and reportName; can be used in the subject of notification emails.

Issues fixed

  • Issue that displayed incorrect password policy message when maximum password age is set to never expire has been fixed.

Release Notes for build 5112 (Aug 2014)

Issues fixed

  • Issue that causes pages to be displayed incorrectly when the browser's default language is not supported by the product.
  • Issue that requires the users enrolled with mandatory questions to enroll again.

Release Notes for build 5111 (Aug 2014)

Issues fixed

  • Some issues that appeared when Japanese is selected as the default language. The issues that have been fixed are:
    • Issue that displays a blank pop up window when the “Automatic Reset and Unlock” feature is accessed from the dashboard.
    • Issue in deleting licensed users.
    • Issue in displaying the force enrollment message.

Release Notes for build 5110 (Aug 2014)


  • Google Authenticator is now supported by the Android and iPhone apps as one of the multi-factor authentication options.

Issues fixed

  • Issue in self password reset when the user name contains apostrophe.
  • Issue which prevents users from logging in to ADSelfService Plus when they have comma in their distinguished name and have the "change password at next logon" flag set.
  • Issue that displayed the system error message to end-users during change password.

Release Notes for build 5109 (July 2014)

Issues fixed

  • Issue in customizing the logon page.
  • Issue in Self Directory Update that forced users to fill non-mandatory, but number-only fields.
  • Issue in sending test emails when SMTP authentication is used.
  • Issue that forced users to enroll for verification code when mobile number format setting is enabled.
  • Issue that refreshed the CAPTCHA code whenever the ENTER key is pressed during reset password/unlock account operations.
  • Issue that runs GINA/Mac Customization Scheduler repeatedly ever after successful customization.
  • Issue in displaying email/mobile number fields during reset password/unlock account when the respective data have been deleted in Active Directory.
  • Login page issue for users who have "user must change password at next logon" setting enabled for them.

Release Notes for build 5108 (July 2014)


  • ADSelfService Plus integration with ADManager Plus now enables you to take control of users’ self-service actions with the new Self-Service Approval Workflow feature.


  • Password Expired users can now change their passwords when they log in to ADSelfService Plus.
  • Mobile App now has a 'Desktop Site' option; allows users to switch to the desktop version of ADSelfService Plus.

Issues fixed

  • Issue in customizing the logon page.

Release Notes for build 5107 (June 2014)


  • Zendesk and Microsoft Dynamics CRM are now supported for self-service password management and synchronization.
  • ServiceDesk Plus is now integrated with ADSelfService Plus; allows admins and end-users to quickly access the help desk software.
  • I18n support for mobile apps; all the 17 languages supported by the web console are now supported by the mobile apps.
  • Now easily deploy the Mac login agents from the web console itself.

Issues fixed

  • Issue in linking Office 365 sub domain accounts by end-users for password sync
  • Issue in closing the ‘Edit Questions’ dialog box

Release Notes for build 5106 (June 2014)


  • Default admins can now view report schedulers and all its information created by users associated with the ‘Technician’ role.
  • OUs selected during report generation will now be preserved and re-used while generating reports in the future.


  • Issue with force enrollment.
  • Issue that displayed the list of restricted users from default domain to all the technicians regardless of the domain they belong to.
  • Blank screen issue when unlock account page is refreshed.
  • Issue that throws a ‘page not found’ error when username exceeds 100 characters during reset password/unlock account process.

Release Notes for build 5105 (May 2014)


  • Google Authenticator is now supported as part of our multi-factor authentication set up to further secure reset password/unlock account process.
  • Facility to make any or all of the multi-factor authenticator techniques mandatory.
  • Option that allows admins to rearrange the order of identity verification steps during reset password/unlock account process.


  • An issue that displays force enrollment notification to non-policy users when a custom logon script is used.
  • Issue in selecting security questions during enrollment when users change their choice of questions.

Release Notes for build 5104 (Apr 2014)


  • Issue in adding domains to the product when their names start with numeric value.
  • Issue with ADSelfService Plus Credential Provider when accessed from the UAC prompt.
  • Issue that allowed users to log in using invalid passwords if guest login is enabled on the machine running ADSelfService Plus.
  • Issue in enrolling with security answers through Android app.
  • Issue in applying the default admin time zone settings to technicians.
  • Issue in enrolling with security answers that are longer than 100 characters.
  • Issue in reports page and in accessing help from the end-users portal when context path is set.

Release Notes for build 5103 (Apr 2014)


  • You can now export the restricted users list in a desired file format
  • Now completely exclude restricted users from showing up anywhere in the product


  • Issue in automatic password reset
  • Issue in accessing native mobile apps and mobile webapp
  • Issue in displaying verification code enrollment information when email option alone is enabled
  • Issue with displaying header logo in scheduled reports when HTML is selected as the storage format

Release Notes for build 5102 (Mar 2014)


  • Alternate Email IDs and Mobile numbers of users stored in any AD attribute can now be used for sending verification codes.
  • Admins can auto-enroll users by importing their Email IDs and/or Mobile Numbers from a CSV file or external database.

Release Notes for build 5101 (Mar 2014)


  • Now you can select the protocol (HTTP/HTTPS) to be used for Mac login agent during installation itself


  • Issue in generating user reports when the database (PostgreSQL) server is installed in another machine
  • Issue that force users to go back or sign out when they login using Single Sign-On
  • Issue in saving ‘Automatic Reset Password’ settings
  • Issue in accessing the help guide when context path is added
  • Issue in translating the label ‘Description’ when reports are exported

Release Notes for build 5100 (Feb 2014)


  • Login Agent for Mac OS X to allow AD domain users to reset passwords and unlock accounts right from the OS X login screen itself.
  • Group-based configuration of self-service policies, enrollment settings and password synchronizer for fine-grained management.
  • Now self-service policies will take effect based on their priorities as set by the admin.


  • Issue in saving report schedulers.
  • Issue in performing quick search in reports.
  • Issue in showing the status of change password actions when enrollment is disabled.

Release Notes for build 5041 (Jan 2014)


  • Added an option to email generated reports


  • Issue with updating profile details when the update button is clicked more than once
  • Issue with updating the Advanced Policy Configuration settings from Security Center

Release Notes for build 5040 (Jan 2014)


  • Password Expiry Notifier is now part of our FREE Edition; allows you to notify UNLIMITED users. Also, gains a slew of enhancements including:
    • SMS notifications to alert users of their impending password expiry
    • Option to select users based on groups for sending password expiry notifications
    • Ability to schedule and send reports of users’ password/account expiry to their managers
    • Send password expiry notifications immediately with the ‘Run Now’ option
    • You can now notify password expired users too
  • Enabling SSO now requires you to configure NTLMv2, which has been added to enhance security
  • Option to hide ‘Click here to troubleshoot’ link in Reset Password / Unlock Account failure page


  • Issue in removing added OUs while configuring GINA/CP scheduler
  • Issue in enabling the ‘Force User to prove their identity via both verification methods’ option

How to Upgrade?

Highlights of Previous Releases (build 4500 to 5032)

  • Unified Self-Service Password Management -Synchronize Windows Active Directory Password/Account changes made using ADSelfService Plus with range of cloud-based and on-premise apps. The following apps are supported:
    • Google Apps
    • Office 365
    • Salesforce
    • Zoho
    • IBM AS400 / iSeries
    • HP UX systems
    • Oracle Database
    • Oracle E-business Suite
  • Free iPhone & Android App for self-service password management: ADSelfService Plus native apps for iPhone and Android allows end-users to reset their lost passwords, unlock their locked-out accounts, change their expiring passwords and synchronize password changes with a variety of non-Windows systems and cloud-based applications remotely from their iOS and Android devices. Get the free app from Get the Apps.
  • Mobile Web App: Mobile browser support for devices running on any platform including Android, iOS and Windows Mobile
  • Mobile App Rebranding: Ability to customize mobile app with your own company logo
  • Mail Group Subscription: Self-Service Mail Group Subscription to allow users to subscribe to or unsubscribe from mail groups of their choice
  • SMS/E-Mail Verification Codes to provide additional security when End-Users Reset Password / Unlock Accounts
  • Enforce Stronger Passwords with "Password Strength Analyzer"
  • Instant DC Updater: The actions by a user (password reset or account unlock), can be instantly updated between sites and across all or specified domain controllers
  • Enrollment Notification: Scheduler to invite the 'non-enrolled & new domain' users to enroll with ADSelfService Plus as well as delivery reports for the notifications.
  • Force Users to Enroll - Now force users to enroll with ADSelfService Plus as soon as they log in to their machines.
  • Extract Audit Reports specific to a domain with the help of built-in filters.
  • Heightened security against 'Cross-site scripting', 'CSRF issue', and 'Denial of Service attack'.
  • SSL Certification Tool: Helps you to generate CSR and offers guidelines to install SSL certificate
  • Report Scheduler: Scheduler for mailing admin the detailed reports of ADSelfService Plus (User, Audit & Enrollment Reports)
  • Restrict User Scheduler: Scheduler for restricting the inactive users of a domain from accessing the application
  • Support for Windows 8 and Windows Server 2012 operating systems
  • Support for Postgres Database server (as product database) in addition to already supported MySQL and MS SQL databases.
  • Support for 17 languages including Dutch, Swedish, Chinese, Spanish, Russian, and Arabic.
  • Support for 3rd party GINA/CP agents:ADSelfService Plus is now compatible with the following 3rd party GINA/CP agents:
    • Zenworks Endpoint Security agent
    • 2X agent
    • Toshiba Logon Provider
    • Cisco NAC agent
    • OneX Credential Provider
    • Sophos Safeguard Disk Encryption
    • Cisoc VPN client
    • Checkpoint Full Disk Encryption (pre-boot authentication not supported)

Click here for the complete list of Features, Fixes and Enhancements from previous releases.

Some other benefits of ADSelfService Plus - Self Service Reset Password Management

Other features

Self Reset Password

Free Active Directory users from attending lengthy help desk calls by letting them self-service the password reset task. Password reset just a click away with ADSelfService Plus!

Self Unlock Account

Free Active Directory users from lengthy help desk calls with ADSelfService Plus's self-account unlock option. Unlocking an account with ADSelfService Plus is child's play!

Password/Account Expiry Notification

Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.

Active Directory Change Password

Hassle-free password change for Active Directory users with ADSelfService Plus. Without help desk assistance users can change their passwords from 'Change Password' console.

Corporate Directory Search

A quick search facility that enables Active Directory users to scout for information about peers by using search keys like phone no., e-mail id, first/ last name of the personality being searched.