Quick Enrollment in ADSelfService Plus

    Enrollment is the mandatory one-time registration of user information such as Biometric information, FIDO passkeys, smart cards, mobile numbers, or email addresses, in ADSelfService Plus.

    MFA enrollment is needed for the following events:

    • Endpoint MFA:
      • For domain users: Endpoint MFA for Windows, macOS, and Linux, including offline MFA for Windows and macOS machines.
      • For local users: Machine login MFA for local Windows machine users.
    • SSO and Password synchronization for enterprise applications.
    • MFA for VPNs and RADIUS endpoints like Citrix Gateway, VMWare Horizon, and Microsoft Remote Desktop Gateway.
    • MFA for OWA and Exchange admin center.
    • Self-service password resets and account unlocks, and logins to the ADSelfService Plus portal.

    Admins can ensure that users enroll for all the required authenticators using the following methods:

    1. Force Enrollment using Logon Script.
    2. Send Enrollment Notification via Email/Push.
    3. Import Enrollment Data from CSV file.
    4. Import Enrollment Data from External Database.