Enterprise Self Service

Enterprise Self Service functionality is rolled into Enterprise Identity Manager, please Click Here

Self Service Password Reset Tool (SSPR)

The easiest, most efficient way to manage your organization’s users, computers,
resources, accounts and password resets using the Active Directory, Azure AD, Office 365, Openldap.

Self Service Password Reset (SSPR) for Active Directory, Azure AD, Office 365, OpenLDAP, LDAP, Google app, sales force and other targets. Passwords are synchronized from domain to other targets regardless of how and from where the passwords are changed.

Why You Need IT

Highly customizable to enterprise need.
Easy to deploy, scales to small to very large Directories
Web based, lightweight footprint, simple install, easy to use
Reset your password with 3 interphases (Web, Mobile, Windows logon)
Unlock your account with 3 interphases (Web, Mobile, Windows logon)
Supports Active Directory, Azure AD or Office365, Openldap, Other LDAP compliant directories, Salesforce, Google apps.
User can change password on domain using any mechanism, CionSystems will synchronize it to other targets using multiple user matching schema

What problems does it solve?

Reduce critical password tickets
Reduce tickets for the group and access management – delegate the responsibility to asset owners
Minimize Helpdesk time and workload
Enhances security, all changes are audited and tracked
Attestation, owners of the resources make the decision, and a record of the change and approval is kept and viewed in easy to read reports. Owner ensures right user has the right level of access, they regularly certify by attestation
Generate User reports and audit reports

What Features Does it Offer?

Self Service Password Reset (SSPR), password synchronization and change password for Microsoft AD, OpenLDAP, Azure AD, Office365, Google apps, Sales force etc.
Use your ID store for any application by using our proxy authentication layer. No need to create and manage user including credentials, achieve SSO with security. Further security is provided by encrypting all communication and only allowed applications and systems to interact with ID store.
No need for Registration, seamless integration to backend “Directory”. Roll out the application without requiring complex registration process

CionSystems Enterprise Self Service – Self Service Password Reset tool (SSPR) is a state-of-the-art solution for identity administration and access control. The Self Service Password Reset (SSPR) delivers the functionalities of web access policy creation and enforcement, user self-registration and self-service, delegated administration, password management, multi-factor authentication, audit and reporting. Having 3 access levels provides the flexibility and reach necessary in today’s complex business environment.

Enterprise Self Service – Active Directory Self Service Password Reset tool (SSPR) also exposes a web service api for proxy Authentication that can allow you to reuse the existing ID store and also achieve multi-factor authentication. Additionally, you get complete auditing out of the box, no need to write additional code. This web service api is exposed to external clients to authenticate the users with Enterprise Self-service application. The external client just needs to provide User Name, password as first factor of Authentication and the Second factor to authenticate will be to validate using 1.Security Question with Answers 2.OTP over Email 3.OTP over Mobile.

Enterprise Self Service provides ALL aspects of operations management, including:

Highly customizable to enterprise need.
Easy to deploy, scales to small to very large Directories
Reset your password with 3 interphases (Web, Mobile, Windows logon)
Reduce critical password tickets
Minimize Helpdesk time and workload
Generate User reports and audit reports
Self Service Password Reset (SSPR), password synchronization and change password for Microsoft AD, OpenLDAP, Azure AD, Office365, Google apps, Sales force etc.
No need for Registration, seamless integration to backend “Directory”. Roll out the application without requiring complex registration process

Download Brochure Download Datasheet

Simple Deployment

Enterprise Self Service – Active Directory Self Service Password Reset tool (SSPR) is the first product that can be deployed in hours and supports on-premises and cloud based identity stores. This avoids complex processes, often with requiring human intervention, and greatly enhances security. All actions follow a defined workflow, and are tracked for audit purposes – supporting governance and compliance requirements. Active directory password reset tool provides a complete, easily deployed and managed, solution. This includes workflow, policy, administrative portal, end user portal, customizable look and feel, reporting, and audit logs. Enterprise Self Service also delivers multifactor authentication and white pages. The web based portal allows Enterprises to easily deploy a secure intranet and/or internet site where employees, partners, vendors, and customers can maintain their profile, access public directory information, and reset expired or forgotten passwords.

Supports Active Directory, OpenLDAP, Other LDAP compliant directories, Azure AD, Office365, Salesforce, Google apps

Control the directory users from admin portal, set user policies, password dictionary, white list email address, multi-factor authenticator for the device, access management (group and group membership management via email).Self Service password reset for cloud Azure AD, Office 365, Active Directory, Linux Openldap, Sales Force and Google apps users.

Administrative Portal

The administrative portal allows for customization and configuration. Support for delegation control to data owners or departmental administrators is provided. SSPR also allows for fine grain synchronization of data between stores. Flat (non-hierarchal identity stores), such as Azure AD, Office 365, can leverage Enterprise Self Services ability to represent a company’s organizational structure, simplifying reporting, delegation, and governance.

Recent Survey

According to a recent report, about 1 in 4 calls to IT Help Desks involve resetting expired passwords, and unlocking user accounts. CionSystems saves you time and money by allowing employees to self-manage their accounts without having to call the Help Desk. This results in less downtime and increased satisfaction with IT processes.

The Design and Looks

This module builds on the core capabilities of Active Directory, and provides a browser-based interface designed specifically for enabling end users to self-manage certain aspects of their own profile. It also includes self-service lost password recovery and password reset functionality that can help organizations dramatically reduce the most common calls to the I.T. help desk. Password reset and account unlock features can be integrated with the end user’s smartphone, tablet, shared workstations, or kiosks. Of course, all user actions follow a defined workflow, and are recorded, which supports audit and compliance requirements.

Our web-based interphase (Dashboard ) helps you spot specific trends like account lockouts, password expired users, not enrolled users, all users , soon to expire users, overall activity of the directory with reports. It’s an easy and visual way to keep tabs on your directory identity management and to help spot potential issues.

Password Synchronization from on-premise domain to Azure AD / Office 365

Now users’ Domain Account Passwords and Office 365 passwords can be synchronized regardless of where or how the password change was initiated . Change requests are intercepted, validated against Office365 password complexity requirements and then applied. This is done securely, over an encrypted connection, protected from man in the middle attacks, spoofing, network capture, or other attacks. This process enforces password complexity requirements and policy on shared accounts, even if the domain does not have a password policy and effect.

Customize User Interface

Customize User interface as per your need. To streamline adoption and deliver a seamless experience, CionSystems Enterprise Self Service allows customization of the complete user interface, including user login, adding logos. Email notifications templates allow messaging to be easily edited to include pertinent information and contact details.

Auto registration of Users

To use Enterprise Self Service, registration is not required for your user community, Enterprise self service application will auto register the users when the user first login into the Self Service portal

Supports Delegation and Workflow

Enterprise Self Service – Active Directory Password Reset tool supports both delegation and workflow, and includes the most common delegation model out-of-the-box: super-user, power users, and end users. Other important capabilities of this module include:

Automated manager delegation and object control, utilizing AD’s built-in “manager” attribute
Complete delegated administration of group creation and membership, including primary and secondary group owners, for both security groups and distribution lists
The ability to support multiple password policies and associate them with a specific AD domain, organizational unit (OU) within a domain, geography, or even based on group membership
Can be configured to use CionSystems multi-factor authentication (MFA) solution for improved security, especially for remote access and administrator use cases
Out-of-the-box self-service password resets for Microsoft AD, OpenLDAP, AzureAD, Office365, Google apps, and Salesforce.com (other sources can be added through configuration)
Support for password synchronization across multiple back-end repositories, including Microsoft AD, OpenLDAP, AzureAD, Office365, Google apps, and Salesforce.com
Out-of-the-box “white-pages” application with free-form search for Azure AD, Office365, Active Directory and other connectors.

Bulk Enrolment of users

When you first deploy this solution, it’s likely you will want to go through a process of bulk enrolment. To achieve this, you will need to get all the relevant enrolment details into a CSV file with the challenge/response information to import into the solution. From there we will automatically update and notify all the users of their enrolment along with instructions for use.

Get Comprehensive Audit and User Reports

Rather than having to constantly check the console to make sure your users are behaving as they should, we ensure you get regular reports delivered straight to your inbox. These reports will show you details such as enrolment, self-service actions performed by users, password expiry and lockout details.

Group Membership Management and Attestation

End to end group creation and membership management workflow via email, supports primary and secondary group owners. Configure ‘attestation’ for owner to certify ownership and membership accuracy on a regular basis.

Self Group Management

Empowering users to manage their own distribution lists and security groups can significantly cut down the time spent to provide employees access to necessary resources, reduce organizational Help Desk costs, and as a result, make the organization more productive.

Temporary Group membership Management

How many times users are added to security groups for temporary period but are never taken out from those group? Use Enterprise self service temporary group membership management by creating templates for automatically adding and remove from security at prescribed time

One Password in all targets

Reset and keep same password on multiple target domains like Active Directory, Openldap, LDAP, Azure AD, Office365, Salesforce, Google apps via our portal, from login screen of the system, mobile or via any mechanism on the domain and we sync the password to the targets.

Delegate Directory Updates via Policy to Users

Using our simple web-based interface, you can transfer control of tasks such as password resets /unlock, personal information updates, group search settings and white page setting tasks to the end users. The solution also allows end users to do these tasks on their own. No longer will you have to manually handle such tasks. Increase your productivity through less downtime and more account control.

Linkup multiple Targets and reset password

Enterprise Self Service – Active Directory Password Reset tool not only allows end users to reset their AD account passwords, but also enables the synchronization of third party applications and the resetting of those particular passwords. Once administrators configure the account settings for these applications, users can reset their Azure AD, Office 365, Openldap, Salesforce, Google Apps passwords by simply resetting their AD account password.

Reset Password Using Mobile Phone

Enterprise Self-Service Portal is also allows registered user to reset the password using mobile phone. To reset password using mobile phone, user has to open the mobile app URL in mobile browser.

Password Reset with Windows Logon

CionSystems Enterprise Self Service – Active Directory Password Reset tool is a state-of-the-art solution for identity administration and access control. The Enterprise Self Service delivers the functionalities of web access policy creation and enforcement, user self-registration and self-service, delegated administration, password management, and reporting. Now you can reset or change password from your windows login screen, your domain password, office 365 password, azure AD password, OpenLDAP password or other supported targets. No need for the user to go to a web-location to reset the password.

Add your Company Logo

Customize the Application by adding your Organization Logo and customize background as per your choice.

Directory Employee Search (White pages)

Our Web Interface provides a powerful, yet simple and easy-to-use search feature that lets users quickly find out necessary information about their colleagues, managers etc.

White Listing email Domain

An important feature for white listing of email address. While creating the users only those domain will be considered which are white listed. Similarly we have Password dictionary feature to store the bad passwords which cannot be used by the enterprise users.

Multi Factor Authentication

Multi Factor Authentication is an additional security feature for your Windows Machines that is designed to prevent anyone from accessing or using your computer, even if they know your username and password. It requires you to verify your identity using first factor i.e your username and password and second factor which only you knows or you have , it can be Your USB disk or OTP Pin send on your Mobile phone or email address and Security questions which only you knows .

Additional Features

Supports Active Directory, Openldap, Other LDAP compliant directories, Virtual Directories, Azure AD or Office365
Supports hybrid or pure cloud environment
Easy to deploy, scales to small to very large Directories
Web based, lightweight footprint, simple install, easy to use
Simple, configurable three tier access model: administrator, power user and users
Registration optional, you can directly login to the portal without registering.
Profile including manager attribute, Contact and Self group membership management
Complete group management, supports primary and secondary group owners
Flexible password policies that can vary based on domain, OU, geography, and group membership
Enforces strong authentication policies
Account lock and unlock by administrator or users
Self-service Password reset, for Microsoft AD, OpenLDAP, AzureAD, Office365, Google apps, Sales force
Manager can manage all direct reports profiles.
Password synchronization between Microsoft AD, OpenLDAP, AzureAD, Office365, Google apps, Sales force Web-service API’s for integration
Delegated user can manage their assigned objects like OU’s, groups, users and other objects
White-pages – free form search for Azure AD, Office365, Active Directory and other connectors
Full audit support – All changes are tracked including who changed what and when
Password management on 3rd party targets.
User self-registration and self-service
Simple, configurable three tier access model: administrator, power user and users
Profile including manager attribute, Contact and Self group membership management.
Complete group management, supports primary and secondary group owners
Flexible password policies that can vary based on domain, OU, geography, and group membership

Additional Benefits

Highly customizable to enterprise need.
Reset your password with 3 interphases (Web, Mobile, Windows logon).
Unlock your account with 3 interphases (Web, Mobile, Windows logon).
Supports Active Directory, Openldap, Other LDAP compliant directories, Azure AD or Office365, Salesforce, Google apps
Out of the box Password dictionary – black list passwords.
Notifications for password expiry, locked users, email inbox threshold.
Multi-factor Authentication for windows devices, desktop, laptop, servers local or remote including RDP
- Supported factors generic USB key, OTP in SMS, OTP in phone app/google authenticator, quiz questions, OTP over email.
Password Synchronization.to many targets like openLDAP, Active Directory, office365, azureAD, salesforce, googleapps etc.
Password sync is done based user name, email address, and other attributes.
Update your personal information on AD and other targets directories.
- User can manage their profile.
- Manager can manage their profile and their direct report profiles.
Self access management, group creation, membership management for both distribution and security groups with a simplified workflow via email, audit and attestation.
Temporary security group membership.
Searchable employee directory and other resources, very customizable.
Whitepages ala phone directory.
Proxy authentication and Web api to authenticate directory with your built in application.
- White listing IP address of calling applications.
- White listing email addresses for the service and application.
Based on access, owner can manage their owned objects like OU, groups and other containers.
Reports for directory, user and audit.
Doesn’t require user ‘registration’, easy integration to primary directory (Active Directory, openLDAP, Office365 etc).
For challenge questions use bulk registration option.
Three landing pages admin page, user page and power user(delegated user) page.
Temporary group membership.

Self Service Password Reset Tool (SSPR)

The easiest, most efficient way to manage your organization’s users, computers,
resources, accounts and password resets using the Active Directory, Azure AD, Office 365, Openldap.

Simple Deployment

Supports Active Directory, OpenLDAP, Other LDAP compliant directories, Azure AD, Office365, Salesforce, Google apps

Administrative Portal

Recent Survey

The Design and Looks

Password Synchronization from on-premise domain to Azure AD / Office 365

Customize User Interface

Auto registration of Users

Supports Delegation and Workflow

Bulk Enrolment of users

Get Comprehensive Audit and User Reports

Group Membership Management and Attestation

Self Group Management

Temporary Group membership Management

One Password in all targets

Delegate Directory Updates via Policy to Users

Linkup multiple Targets and reset password

Reset Password Using Mobile Phone

Password Reset with Windows Logon

Add your Company Logo

Directory Employee Search (White pages)

White Listing email Domain

Multi Factor Authentication

Additional Features

Additional Benefits

About

Products

Blog

Enterprise Self Service

Self Service Password Reset Tool (SSPR)

The easiest, most efficient way to manage your organization’s users, computers, resources, accounts and password resets using the Active Directory, Azure AD, Office 365, Openldap.

Simple Deployment

Supports Active Directory, OpenLDAP, Other LDAP compliant directories, Azure AD, Office365, Salesforce, Google apps

Administrative Portal

Recent Survey

The Design and Looks

Password Synchronization from on-premise domain to Azure AD / Office 365

Customize User Interface

Auto registration of Users

Supports Delegation and Workflow

Bulk Enrolment of users

Get Comprehensive Audit and User Reports

Group Membership Management and Attestation

Self Group Management

Temporary Group membership Management

One Password in all targets

Delegate Directory Updates via Policy to Users

Linkup multiple Targets and reset password

Reset Password Using Mobile Phone

Password Reset with Windows Logon

Add your Company Logo

Directory Employee Search (White pages)

White Listing email Domain

Multi Factor Authentication

Additional Features

Additional Benefits

About

Products

Blog

The easiest, most efficient way to manage your organization’s users, computers,
resources, accounts and password resets using the Active Directory, Azure AD, Office 365, Openldap.