A secure active directory password policy demands users to change their passwords on a periodic basis. This is with a motive to ensure security of user logins and prevent attacks by any intruder. Users are notified on a periodic basis by email to change their own passwords by the administrator. Domain users can change their own password - without helpdesk's assistance - using ADSelfService Plus web-based Active Directory change password tool, which prevents an account lockout and therefore the need for an account unlock.
ADSelfService Plus web based, self service change password solution provides a secure portal to allow domain users to change their own passwords. Any user can click on the change password link on the web portal and change their Windows Active Directory login password. The type of password a user can change and the password policy can be viewed on the display of the ADSelfService Plus change password screen. Users can change their passwords according to policy set by the administrator and further be aware of other policy requirements and complexities.
The need for a change password can occur as a result of one or more of the following instances
Changing passwords periodically is a healthy habit, since it helps thwart the password-related issues mentioned earlier. Security experts suggest admins force users to change their passwords by setting password expiration dates for them. But users can only change their domain password when they're connected to the company network. So what happens if users aren't connected to the LAN (VPN and OWA users) when their passwords are about to expire?
Not to worry. With ADSelfService Plus, users can change their domain passwords remotely. Usually when a user's domain password is changed, the change is reflected in Active Directory but not on the user's local machine. That means that the cached credentials on the user's machine must be updated for the change to take effect. Otherwise, their cached credentials won't be accurate and they won't be able to log in to the system.
To simplify this, ADSelfService Plus gives you a GINA/CP client, which places a Reset Password/Account Unlock button right on the Windows login screen. Users can click this button to reset their forgotten passwords right from their login screen. After a successful password reset, the cached password is updated on the users' machines.
Reset password is where an old password which is forgotten by a domain user is forced to be reset to a new one even with no knowledge of what the old password was. ADSelfService Plus allows domain users to perform self password reset from its Active Directory password reset web portal by satisfying validation and identity verification questionnaire answered during enrollment.
Change password does not require a validation process. It only requires a user login into the ADSelfService Plus Domain User login portal. When a user changes his password, he supplies the old password along with the new password, if the old password is correct and the new password follows the password policy then the password will be changed. This is the normal change password process that users go through, when they change their passwords based on password policy
Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console.
Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus!
Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.
Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more.
Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.