Password Sync Agent Installation

Introduction

Password Synchronization allows end users to use a single identity, subject to a single password policy, across various systems and applications. ADSelfService Plus has a robust password synchronization technique that now supports even the native Windows password changes using the Password Sync Agent.

The Password Sync Agent, when installed on the domain controllers in your domain, intercepts native password changes (e.g.: password change via Ctrl+Alt+Del screen or password reset by admins in ADUC console), encrypts the new passwords, and automatically synchronizes them with multiple systems and applications.

How it works

Password Sync Agent Architecture

Installation

This section includes information about the prerequisites for installing the Password Sync Agent, followed by the installation steps, as well as guidance for making changes, and upgrading or reinstalling the Password Sync Agent.

Prerequisites

Installation Steps

  1. Install the Password Sync Agent by running the ManageEnginePasswordSyncAgent.msi file with administrative privileges, i.e, Run as administrator. (Location: <installation_folder>\bin\ )
  2. In the installation wizard that appears, click Next. Select the Protocol (http or https) used in ADSelfService Plus.

    Folder Selection

  3. Enter the IP address and Port Number of the server on which ADSelfService Plus is installed.
  4. In the Access key field, paste the Access Key provided in the ADSelfService Plus portal. You can obtain the access key from Configuration→Administrative tools→GINA/Mac/Linux (Ctrl+Alt+Del)→Password Sync Agent Installation. Click Next.

    Server Details

  5. Once the installation is complete you must restart the domain controller for the agent to start working.
Note: By default, the password sync agent will be installed in the following location:
In 64-bit systems - C:\Program Files (x86)\ZOHO Corp\Password Sync Agent
In 32-bit systems - C:\Program Files\ZOHO Corp\Password Sync Agent

Making changes to the Password Sync Agent

The Password Sync Agent connects with ADSelfService Plus using the IP address, port number and access key details provided during installation. In the event that you have given incorrect details during installation, moved ADSelfService Plus to a new server, or regenerated the access key, then the changes must be reflected on the password sync agent for it to work properly. The details can be changed by following the steps given below:

  1. Right-click the Password Sync Agent icon on the System tray and select Edit Settings.
  2. The Edit Settings dialog box will open.

    Server Details

  3. Enter the Server Name / IP Address, Port Number, Access key and Protocol (HTTPS/HTTP).
  4. Click Save.
  5. The new details will be updated in the Password Sync Agent.
Note: Every time you regenerate the access key, make sure to update the new access key in the Password Sync Agent. In order to regenerate the access key, navigate to Configuration→Administrative tools→GINA/Mac/Linux (Ctrl+Alt+Del)→Password Sync Agent Installation and click Regenerate Access Key.

Upgrading or reinstalling the Password Sync Agent:

To upgrade the Password Sync Agent to a newer version or to reinstall the agent on an existing machine, follow the steps listed below:

Note: Do not repair the Password Sync Agent directly using the new MSI file.
feature-banner

Thanks!

Your request has been submitted to the ADSelfService Plus technical support team. Our technical support people will assist you at the earliest.

 

Need technical assistance?

  • Enter your email ID
  • Talk to experts
  •  
  •  
    By clicking 'Talk to experts', you agree to processing of personal data according to the Privacy Policy.

Copyright © 2022, ZOHO Corp. All Rights Reserved.