Adaxes

Password Self Service - Windows 10 Credential Provider

0 votes

Hello!

We're using Duo for MFA on Windows 10 logins and understand this creates a new credential provider in Windows along side Adaxes' Password Self Service (PSS) credential provider.

I have it worked out how to display both credential providers at the logon screen but as you know, using the PSS credential provider option bypasses the Windows logon Duo MFA requirement (The PSS link still works great though ).

I've read in other Adaxes posts and elsewhere that there is no way to merge the Duo MFA function with the Adaxes PSS Link without creating a custom credential provider and having the code for both apps. So forget that option.

My ask is, could Adaxes create an alternate credential provider that still presents the PSS Link BUT disables the Windows username and password field? Administators could choose between which Adaxes credential provider to use via Group Policy or local registry settings.

With this, the Duo credential provider would be only one capable of logging the user in and they would have the option to switch to use the altered Adaxes credential provider with the PSS link. Using the PSS link, user's can still be required to use 2FA with a Auth app or SMS code along with questions/answers.

Thank you, Kyle

by (20 points)

1 Answer

0 votes
by (272k points)

Hello Kyle,

Unfortunately, there is no possibility to configure the Adaxes Self-service client in such a way. However, thank you for the suggestion. We have forwarded it to the corresponding department for consideration.

Related questions

0 votes
1 answer
Self Service Client on Windows 10

Hello, in the Adaxes self service client installation guide Windows 10 is not listed as a supported operating system. Does the client really don't work on Windows 10? And if so, are there plans to support it on W10? Thank you, Bernd

asked Feb 20, 2017 by b.mareth@esri.de (50 points)
0 votes
1 answer
Local password self service reset for Windows breaks access to private keys of user certificates

Hi there, we are already successfully using the password self service via webinterface for our ad domain users. In addition to this are we in the testing phase of the password ... has the same problem and maybe can report how they solved it. Thanks in advance.

asked Oct 27, 2021 by khess (20 points)
0 votes
1 answer
Install admin console on windows 10 azure joined computer

Hi, I'd like to install the admin console on my Windows 10 22H2 Azure Joined computer. Product Version = 3.16.21515.0 2023.2 I get the following error when I run ... install Softerra Adaxes 2023.2, this computer must be a member of an Active Direcoty Domain. I

asked Jul 13, 2023 by KevC (60 points)
0 votes
1 answer
Limit Self Service Password Reset to a Single Managed Domain

We have two on-prem domains; Domain A and Domain B. Domain A is our primary domain and syncs with Azure AD. Domain B contains accounts created for external ... user attempts to authenticate, they are only authenticating against the Domain B on-prem domain?

asked Apr 10 by awooten (60 points)
0 votes
1 answer
How to restrict users from resetting their password but only provide ability to change their password in self-service

Would like to know if we can remove the forget password link on Self-service login page or remove the ability for users to reset their password. We only want users to ... be able to change their password but not reset their password if they have forgotten it.

asked Mar 29, 2023 by Vish539 (310 points)
3,348 questions
3,049 answers
7,789 comments
545,046 users