Avatar of Dave Nimai
Dave Nimai
 asked on

Reset AD password via a webpage - Mac environment


I was wondering if anyone could provide a solution that will allow our users to reset their passwords via a website browser.  I've seen tools like manage engine used in the past, however, I am not sure how reliable 3rd party solutions are.

Any assistance on this would be great!
Windows OSActive Directory

Avatar of undefined
Last Comment
Aard Vark

8/22/2022 - Mon
John Tsioumpris

View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Adam Brown

Third party solutions are really the only way to do it. Microsoft's Unified Access Gateway solution has a self-service password reset portal solution built in, but UAG is no longer available for purchase, and that feature wasn't included in Server 2012 like the other UAG features were. Manage Engine's solution is pretty good, and reliable. If you're familiar with it, I'd go with that.
Patrick Bogers


You can do it with OWA so why bother with third party applications?

Aard Vark

I am not sure how reliable 3rd party solutions are

Third party solutions are fine. All they're doing is sticking a pretty interface over the top of a password reset call being made by a service account. That's it. Where it gets more complicated is the features around the UI and the process to a password reset. For example, having users register a phone number so they they get a phone call or code SMS sent to them with a 1 time use code is more complicated than an app that just requires some  some security questions to be answered.

It gets even more complicated if you're after a full identity management suite that integrates with your entire organisation. Oracle's products for example get complicated very quickly. For them the password reset features are only a small party of their overall identity management platform. But they integrate their password reset function into the Windows GINA which means the user can perform the password reset from the Ctrl+Alt_Del screen vs having to find a way to access a web page. A more narrow focused password self-service application like Netwrix or Dell's offerings will be mostly next, next, finished affairs that are relatively basic to setup.

If you're using O365 and Azure AD Premium you can utilise the password reset self-service with password write-back to your on premise environment. That would be another option.
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
Dave Nimai

This is a great idea.  We are using Office365 basic.  Will this have the capabilities we require?  I've been trying to research for what plans will work with on-prem AD integration but it has been extremely unclear.
Aard Vark

Refer to this blog post. It will depend on what your user type is.

Basically if the user is a cloud account in O365 then they can password self-service, otherwise if you are synchronising from on-prem AD you will need to have an Azure AD Premium or EMS subscription.