Password Synchronizer

ADSelfService Plus' Real-time Password Synchronizer automatically replicates users' Windows Active Directory (AD) password resets and changes, and account unlocks across other platforms.

ADSelfService Plus supports a wide range of cloud-based and on-premise applications for password synchronization with Windows Active Directory. The list includes:

Real-time Password Sync Agent:

ADSelfService Plus with its Password Sync Agent feature now makes it possible for real time password synchronization. When installed on the domain controllers in your domain, any native password changes get intercepted, the new passwords are encrypted and are automatically synchronized with multiple systems and applications.

To know more about Real-time Password Sync agent, click here.

Account linking:

Password synchronization works only when the users' Active Directory (AD) accounts are linked with accounts from other providers in ADSelfService Plus. Account linking can either be automated or done manually.

  1. Automatic Account Linking
  2. Manual Account Linking

To link accounts automatically, you have to specify a source attribute, which is composed of one or more attributes in AD, and a target attribute from the enterprise application. When a user resets or changes the passwords, the modifications are synchronized only when the target attribute value matches the source attribute value.

Steps to link users' accounts automatically:
  1. Log in to ADSelfService Plus web console as an administrator.
  2. Navigate to Configuration → Self-Service → Password Sync/ Single Sign On. Now, a list of configured applications would be shown.
  3. Click the Advanced button for the required application configuration.
  4. In the window that opens, Select the Enable Auto Account Linking checkbox.
  5. In the Source Attributes drop-down, select the attributes (one or more) from the AD domain where the users' password will be reset.

    Example: Say you want to use both ‘sAMAcountName’ and ‘Initials’ as source AD attributes. You select each of these AD attributes from the source attributes drop-down, and use the buttons near its field to add it. Make sure that the combined value of the AD source attribute (say 'JohnA' in this instance), matches the corresponding target attribute in enterprise application.
  6. In the Target Attributes drop-down, select the attribute whose value will equal the combined value of the selected source attributes.

    account-linking

  7. Select the Append Domain checkbox to add the domain's name at the end of the combined value of the selected source attributes. That is, if the checkbox is selected, the sAMAccountName+Initials becomes, sAMAccountName+Initials@domain.

  8. Click Save button.

If manual linking is enabled, Users can do link their account themself by entering the credentials of their cloud application or other server accounts with which they want to link their AD accounts in the self-service portal.

  1. Log in to ADSelfService Plus web console as an administrator.
  2. Navigate to Application tab. Now, List of configured applications would be shown.
  3. Click the Advanced button for the required application configuration.
  4. In the window that opens, Deselect the Enable Auto Account Linking checkbox.
  5. Click Save button.

Copyright © 2024, ZOHO Corp. All Rights Reserved.