For businesses reeling under the high cost associated with routine calls to the help desk, end user self-service is a great solution, enabling and empowering end users to solve their own IT problems. And yet, some businesses stay away from deploying self-service. For example, even though it's a tedious task for the help desk to maintain up to date profile information of each and every employee in Active Directory, organizations may not allow end users to self-update their profile information in Active Directory for fear of losing control over security and data consistency.
ADSelfService Plus, the web-based self-service password management solution, allows you to review and approve users' self-service actions. A help desk software with approval workflow feature such as ADManager Plus is required for the review and approval process. The approval workflow rules set by the administrator in the help desk software determine who can review and approve the self-service requests. In ADManager Plus, admins can create and modify any number of self-service approval workflow rules for different types of requests. For password reset and account unlock, you can determine how users' identities are to be verified by configuring Active Directory attributes-based security questions. Once ADSelfService Plus is integrated with ADManager Plus, users' self-service actions are taken as requests instead of being directly updated in Active Directory.
By enabling ‘approval workflow’ for self-password reset and self-account unlock actions, you give help desk technicians the ability to verify users’ identities. Identities are verified using a set of Active Directory attributes-based security questions such as what is your mobile number?, what is your department?, etc. Here’s how the ‘approval workflow’ model works for self-password reset and self-account unlock requests:
See Self-Service Approval Workflow guide to learn the steps involved in configuring this feature.
Details like who created the request, who approved the request and when the request was approved are captured and recorded in reports for later use. Furthermore, users can view the status of the request by logging in to the self-service portal of ADSelfService Plus.
Approval based self-service gives you control over users’ self-service actions and ensures that they are handled in a secure, consistent manner.
Users can create requests on their own without having to call the help desk. The cost associated with users calling the help desk for booking IT service requests is significantly reduced.
You have the option to give certain users, like those in managers OU, a pure self-service experience by excluding them from self-service approval, and enable it for all the other users.
Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console.
Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus!
Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.
Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more.
Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.