• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 501
  • Last Modified:

Hosting documents outside to the clients

The client is ediscovery and hosting legal document out to the clients via the hosting provider.  They authenticated via Active Directory.
Most the calls from the clients they got locked out and need to reset their password.
Is there a good software or utility that can give the client the provilege to reset your own password?  I used DRA before from NetIQ.  Can that give the clients privileges to reset their own password?
Any other suggestions welcome.
Thank you!
5 Solutions
Dhiraj MuthaCommented:
Have you tested Netwrix products, they are good. Try it : http://www.netwrix.com/password_manager.html
Krzysztof PytkoActive Directory EngineerCommented:
You may be interested in Microsoft Forefront Identity Manager 2010 but it is paid solution. However, it provides many valuable features like user's self password reset and access management. Please check it at

Please try the below link..

you can configure self service portal from IIS web server with Active directory for reset the users password. There is no need to buy additional software
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tiras25Author Commented:
@sravi - will users be able to reset their own passwords?  

What about DRA from NetIQ?  Does it have an option to give users the ability to reset their own passwords?
btanExec ConsultantCommented:
Some options but mainly is based on "simple, predefined questions"

a) ADSelfService Plus - http://www.manageengine.com/products/self-service-password/self-service-password-reset.html

b) SSRPM - http://www.tools4ever.com/products/self-service-reset-password-management/

c) NetWrix Password Manager - http://www.netwrix.com/password_manager.html

With regards to NETIQ, the Web Access gateways like NetIQ Access Manager  works with SSRPM. The latter seems more flexible with interoperability

Tiras25Author Commented:
Have you guys heard about ADSelfService Plus ? Here is some info below..

It's a well-known fact that 'password reset calls' have long been a troublesome issue to an organization's IT helpdesk. Though they seem like a simple trouble ticket, they actually can rob helpdesk/ employees' valuable time. This is especially true when password reset call volume increases.
We have the perfect answer to this menace: ADSelfService Plus, a password self-service solution!

And for your maximum benefit, ADSelfService Plus also offers:
•  Active Directory Self Update
•  Password Expiration Notifier
•  People Search (Corporate Directory Search)

How does ADSelfService Plus delegate a task that is as sensitive & as confidential like 'password reset' onto end-users?
Simple! Establish users' identity through any or both of the methods given below and then allow them to reset passwords.
•  Security Q/A Method: Users will be asked a set of questions that they registered. Correct answers establishes their identity.
•  SMS/Mail Verification: A code will be sent either to users' email or mobile phone. Users can establish their identity by reproducing the code.
Note: The details pertaining to the above mentioned features (Security Q/A Method / Verification Code) are submitted by users as they enroll themselves into ADSelfService Plus.
Platforms offered by ADSelfService Plus to carry out the password reset task:
Web Portal: Specially designed for VPN/Mobile users who are not a part of the intranet that hosts ADSelfService Plus (in order to let these users carryout the password reset task)
Winlogon Screen(Ctrl+Alt+Del): Allows users to carryout the password reset task right from their winlogon screen (at the press of Ctrl+Alt+Del keys)
What´s more? Through ADSelfService Plus, end users can also SELF UPDATE personal information directly into Active Directory!
The benefits of ADSelfService Plus (apart from saving plenty of dollars for your organization)
•  Fastest implementation time: Deployed and configured in a few minutes
•  Easy but secure three-quick-step password reset/account unlock option
•  Built-in deployment facilitators and license management tool make way for quick deployment & high ROI.
•  All-inclusive: Comprises all the features that make a complete self-service password reset software; even has "soon-to-expire password notification" and other essential email notifications.
This is not the end of benefits - the latest release ADSelfService Plus 4.5 build 4500 too has a plethora of features to offer. Some of these are listed below:
New features:
•  Automatic Database Backup: Configure schedulers for backing up the product database at regular intervals.
•  External Data Source Connectors: Import Security Questions and Answers from your in-house or other databases (MS SQL/Oracle /and MySQL) and reuse them in ADSelfService Plus.
•  SSL Certification Tool: Helps you to generate CSR and offers guidelines to install SSL certificate.
•  Delivery Status Notification: Get to know the status of the SMS/E-mail sent via ADSelfService Plus!
Tiras25Author Commented:
Breadtan, from the tools your listed.  Which one would be your preference?  My first I had in mind ADSelfService Plus.  I would need to evaluate other tools also.
btanExec ConsultantCommented:
I will say adselservice plus is rather aggressive in promoting itself. My thoughts is why not poll NETIQ why not ADSelfService Plus, see their feedbacks esp if they are into making service available at all time. Rule of thumb is no compromise for security or business operation. E.g. the password recovery shd not become too easy to serve as backdoor such that user authentication is.not reliable and robust.  
Tiras25Author Commented:
Going with ADSelfService Plus to evaluate. Update soon.  Sorry for the delay.

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now