Connection Settings

You can configure the SSL settings, access URL, proxy settings, port settings and session time settings under Connection Settings.

Connection Settings

1. Click Admin → Product Settings → Connection.
2. Click the Connection Settings tab and select ADSelfService Plus port [https].



Note: We strongly advise against choosing HTTP in your production environment because it does not enforce SSL certificate validation, which will have a severe impact on security. The HTTP option has been provided only for testing purposes.

3. Set a port number of your choice for ADSelfService Plus, or retain the default port number.

The following steps are applicable when HTTPS is selected.

4. Click Apply SSL Certificate and follow the steps to apply the SSL certificate in ADSelfService Plus. Learn more.
5. Select Enable LDAP SSL to secure communication between Active Directory and ADSelfService Plus.
6. Select Encrypt keystore password and enter the keystore password. The password you enter will be encrypted for better security.
Note: The value of the keystorePass property in the server.xml file will be replaced with the macro ${adssp.keystorePass}.
7. Select the TLS Versions and the Cipher Suites from the drop-down.
8. Click Save.
Important: If you’ve hosted ADSelfService Plus over the internet or behind a proxy server, you can configure an access URL to provide end users with access to ADSelfService Plus.

Proxy Settings

1. Select Enable Proxy Server .
2. Enter the  Server Name or IP of the Porxy.
3. Provide the required authentication details by entering the Username and Password.
4. Click Save.
Note : Use Test Connectionto verify that the proxy server connection is valid.

General Settings

Session Settings

Session Expiry Time: Session Expiry Time is the maximum duration a user's ADSelfService Plus session can remain idle before being terminated. Configure session expiration time for users (from 10 minutes to Never expires) by selecting the Session Expiration Time of your choice from the drop-down.

To do so,

1. Log into the ADSelfService Plus portal with admin credentials and navigate to Admin → Product Settings → Connections → General Settings.
2. Select a session expiration time limit from the drop-down. 

Deny multiple simultaneous logins for a user: When Deny Concurrent Logins is enabled, users will not be allowed to log in to ADSelfService Plus from multiple client endpoints simultaneously. That is, users will not be able to log in to ADSelfService Plus if there is another active session in a browser or the mobile app.

Users can log in again only after they log out from all existing sessions, or after their session time expires.

To deny multiple simultaneous logins,

1. Log into the ADSelfService Plus portal with admin credentials and navigate to Admin → Product Settings → Connections→ General Settings.
2. Check the Deny Concurrent Login checkbox.

Attempts to log into ADSelfService Plus web console when there is another active session will result in an error message.

Clearing the session status of users: When Deny Concurrent Logins  is enabled, a user who closes a browser with an active ADSelfService Plus session will not be able login to his/her portal until the idle session time expires. In case of such a situation, you can reset the session login status to terminate the idle sessions of all the users under the policy. Active sessions will not be affected.

Startup & Logging Settings

Current Log Level <drop_down>: To collect minimum debug information, select the Normal mode. To get in-depth debug information, select the Debug mode.

Retain Logs for <textbox> days: Use this setting to set the number of days for which to preserve the log files. If this option is enabled, log files which are older than the specified number of days will be removed. By default, the log files are retained for 365 days. If this option is not enabled, log files will be retained indefinitely.

Enable Session Tracking: To facilitate in-depth debugging, you can monitor user sessions by selecting Enable Session Tracking.

Launch the ADSelfService Plus Client upon Successful Startup: If this option is enabled, the ADSelfService Plus web application will automatically start running as soon as the user logs into their machine.

Start the Product Automatically on Windows Startup: If this option is enabled, ADSelfService Plus will automatically start running in the background as a Windows service as soon as the user logs into their Windows machine.

Once you have enabled the required settings, click Save Settings. The changes made will be reflected upon restarting ADSelfService Plus.