This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
MarcinGryga
Beginner
Beginner
‎2018-06-25 01:30 PM

Active Directory password reset

Jump to solution

Hi,

 

I'm new to SecurID. I'm looking for a solution which will provide my endusers (3k) possibility to reset active directory password when they forget it. Is this possible using Authentication Manager and self-service portal?

In AM 8.3 administration guide I have found only information that enduser may be forced to change ldap password, but there is no such option on-demand, so for example user can log in answering security questions and token and then reset AD password.

thanks for any help.

 

Regards

0 Likes
Reply
1 Solution

Accepted Solutions
PiersB
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2018-06-26 03:21 PM

Jump to solution

This is not a current capability of RSA Authentication Manager. This would require that the product's connection to your Active Directory was made from a highly privileged account. When a user authenticates to the Self Service Console, they are authenticating to AD as themselves, not through some generic administrative identity. A user authenticating to the self-service console with their AD password creates a logon security event in the AD event log.

 

A quick search found a number of Certified Partners that appear to offer that functionality. One example is Zoho ManageEngine ADSelfService Plus - RSA SecurID Access Standard Agent Implementation Guide. This appears to offer the functionality for which you're looking. There are probably others as well, but this was my "first hit".

 

A colleague (James Mandelbaum) pointed out that this functionality is available in "RSA AM-Prime" from Professional Services. Take a look at the Service Data Sheet - AM Prime.pdf.  

View solution in original post

Reply
3 Replies
PiersB
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2018-06-26 03:21 PM

Jump to solution

This is not a current capability of RSA Authentication Manager. This would require that the product's connection to your Active Directory was made from a highly privileged account. When a user authenticates to the Self Service Console, they are authenticating to AD as themselves, not through some generic administrative identity. A user authenticating to the self-service console with their AD password creates a logon security event in the AD event log.

 

A quick search found a number of Certified Partners that appear to offer that functionality. One example is Zoho ManageEngine ADSelfService Plus - RSA SecurID Access Standard Agent Implementation Guide. This appears to offer the functionality for which you're looking. There are probably others as well, but this was my "first hit".

 

A colleague (James Mandelbaum) pointed out that this functionality is available in "RSA AM-Prime" from Professional Services. Take a look at the Service Data Sheet - AM Prime.pdf.  

Reply
VT_ChrisV
Beginner
Beginner
In response to PiersB
‎2020-09-04 01:44 AM

Jump to solution

Any updates on this solution or content. The document linked is 4 years old.  Are there other technology partners or new features within RSA SecureID or Authentication manage offering a SSPR to end users?

0 Likes
Reply
JayGuillette
Apprised Contributor Apprised Contributor
Apprised Contributor
In response to VT_ChrisV
‎2020-09-04 10:29 AM

Jump to solution

The only way to achieve an AD password self service reset is through AM Prime with the Self Service Portal, SSP.

https://community.rsa.com/community/products/securid/prime/blog/2019/02/28/prime-101-a-customer-introduction 

https://community.rsa.com/community/products/securid/prime 

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.