Hosting documents outside to the clients

Posted on 2011-10-20
Last Modified: 2012-06-27
The client is ediscovery and hosting legal document out to the clients via the hosting provider.  They authenticated via Active Directory.
Most the calls from the clients they got locked out and need to reset their password.
Is there a good software or utility that can give the client the provilege to reset your own password?  I used DRA before from NetIQ.  Can that give the clients privileges to reset their own password?
Any other suggestions welcome.
Thank you!
Question by:Tiras25
    LVL 14

    Accepted Solution

    Have you tested Netwrix products, they are good. Try it :
    LVL 39

    Assisted Solution

    by:Krzysztof Pytko
    You may be interested in Microsoft Forefront Identity Manager 2010 but it is paid solution. However, it provides many valuable features like user's self password reset and access management. Please check it at

    LVL 4

    Assisted Solution

    Please try the below link..

    you can configure self service portal from IIS web server with Active directory for reset the users password. There is no need to buy additional software
    LVL 17

    Author Comment

    @sravi - will users be able to reset their own passwords?  

    What about DRA from NetIQ?  Does it have an option to give users the ability to reset their own passwords?
    LVL 60

    Assisted Solution

    Some options but mainly is based on "simple, predefined questions"

    a) ADSelfService Plus -

    b) SSRPM -

    c) NetWrix Password Manager -

    With regards to NETIQ, the Web Access gateways like NetIQ Access Manager  works with SSRPM. The latter seems more flexible with interoperability
    LVL 17

    Author Comment

    Have you guys heard about ADSelfService Plus ? Here is some info below..

    It's a well-known fact that 'password reset calls' have long been a troublesome issue to an organization's IT helpdesk. Though they seem like a simple trouble ticket, they actually can rob helpdesk/ employees' valuable time. This is especially true when password reset call volume increases.
    We have the perfect answer to this menace: ADSelfService Plus, a password self-service solution!

    And for your maximum benefit, ADSelfService Plus also offers:
    •  Active Directory Self Update
    •  Password Expiration Notifier
    •  People Search (Corporate Directory Search)

    How does ADSelfService Plus delegate a task that is as sensitive & as confidential like 'password reset' onto end-users?
    Simple! Establish users' identity through any or both of the methods given below and then allow them to reset passwords.
    •  Security Q/A Method: Users will be asked a set of questions that they registered. Correct answers establishes their identity.
    •  SMS/Mail Verification: A code will be sent either to users' email or mobile phone. Users can establish their identity by reproducing the code.
    Note: The details pertaining to the above mentioned features (Security Q/A Method / Verification Code) are submitted by users as they enroll themselves into ADSelfService Plus.
    Platforms offered by ADSelfService Plus to carry out the password reset task:
    Web Portal: Specially designed for VPN/Mobile users who are not a part of the intranet that hosts ADSelfService Plus (in order to let these users carryout the password reset task)
    Winlogon Screen(Ctrl+Alt+Del): Allows users to carryout the password reset task right from their winlogon screen (at the press of Ctrl+Alt+Del keys)
    What´s more? Through ADSelfService Plus, end users can also SELF UPDATE personal information directly into Active Directory!
    The benefits of ADSelfService Plus (apart from saving plenty of dollars for your organization)
    •  Fastest implementation time: Deployed and configured in a few minutes
    •  Easy but secure three-quick-step password reset/account unlock option
    •  Built-in deployment facilitators and license management tool make way for quick deployment & high ROI.
    •  All-inclusive: Comprises all the features that make a complete self-service password reset software; even has "soon-to-expire password notification" and other essential email notifications.
    This is not the end of benefits - the latest release ADSelfService Plus 4.5 build 4500 too has a plethora of features to offer. Some of these are listed below:
    New features:
    •  Automatic Database Backup: Configure schedulers for backing up the product database at regular intervals.
    •  External Data Source Connectors: Import Security Questions and Answers from your in-house or other databases (MS SQL/Oracle /and MySQL) and reuse them in ADSelfService Plus.
    •  SSL Certification Tool: Helps you to generate CSR and offers guidelines to install SSL certificate.
    •  Delivery Status Notification: Get to know the status of the SMS/E-mail sent via ADSelfService Plus!
    LVL 17

    Author Comment

    Breadtan, from the tools your listed.  Which one would be your preference?  My first I had in mind ADSelfService Plus.  I would need to evaluate other tools also.
    LVL 60

    Assisted Solution

    I will say adselservice plus is rather aggressive in promoting itself. My thoughts is why not poll NETIQ why not ADSelfService Plus, see their feedbacks esp if they are into making service available at all time. Rule of thumb is no compromise for security or business operation. E.g. the password recovery shd not become too easy to serve as backdoor such that user authentication is.not reliable and robust.  
    LVL 17

    Author Comment

    Going with ADSelfService Plus to evaluate. Update soon.  Sorry for the delay.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    What Is Threat Intelligence?

    Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

    If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
    This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now