Adaxes

How can I lock down the self service portal? Users can't edit AD attributes.

0 votes

I am basically setting up the self service portal to only allow a user to reset thier own passwords.

by (1.0k points)
–1

Hello,

Have a look at the following tutorial: https://www.adaxes.com/tutorials_WebInterfaceCustomization_AllowDenyAccessToTheWebInterface.htm. On step 4, select option Deny access for all users. This way, nobody will be able to log in to the Web interface, but users will be able to use the Forgot your password? option on the sign in page to reset their forgotten passwords.

by (272k points)
0

I need users to log in to be able to enrole in password self service. This option would not solve my issue. My issue is a user can log in and change attributes on thier account in AD, Attributes we are going to use in the future which can not be modified by end users like Phone numbers, notes, and other stuff.

I tried to remove from the self service view in the management area:

image.png I also set access on using a Adaxes security group. image.png And set the access in the web configurator. image.png Yet my test user can update the fields image.png

by (1.0k points)
0

Hello,

Do we understand correctly that you want to prohibit users from modifying any properties in the Web interface? If not, please, describe the desired behaviour in all the possible details with live examples.

by (272k points)
0

Yes that is exactly what I need. They should be able to log in so they can enrole in password self service and reset their password if they chose. Other wise they can see their attributes but not be able to modify them.

by (1.0k points)

1 Answer

0 votes
by (272k points)

Hello,

Thank you for clarifying. To achieve the desired, please, do the following:

0

image.png image.png User still sees the edit button and can edit the properties. image.png

by (1.0k points)
+1

Hello,

As we mentioned in the previous post, it should be done for all sections. According to your screenshot, the button was disabled for the General section, but is displayed for the Personal Information one.

by (272k points)
0

Perfect, thank you.

by (1.0k points)

Related questions

0 votes
1 answer
I cant see where I can allow multi selection of user objects to then edit in the web interface.

I would like to change department without a script just yet if possible on multiple accounts. If I cant do this then I will entertain custom script Thanks :)

asked Nov 23, 2021 by will17 (350 points)
0 votes
1 answer
How to provide a button in web UI for Admins to reset Q&A for users enrolled Self-Service portal

would like to know the method to provide a button to security Q&A reset for enrolled users to Adaxes Admins via Web UI

asked Mar 21, 2023 by Vish539 (310 points)
0 votes
1 answer
How can I change Self-Service page to display a specific Business Unit for a company directory by default?

We are replacing our Namescape rDirectory product with Adaxes because of the very flexible automation components. I've been able to replicate some of the pages previously ... vast majority of our users, that would function as the default company directory.

asked Aug 5, 2022 by MRBruce (110 points)
0 votes
1 answer
How can I restrict users automatically based on an AD attribute?

This is for license purposes and we do not want them visible in the Adaxes portal.

asked Oct 22, 2021 by jfrederickwl (20 points)
0 votes
1 answer
Can I change the default URL for Adaxes password self service

The default is http://[mydomainname]/Adaxes/SelfService is there a way to change this? example; http://[mydomainname]/passwordselfservice or http://[mydomainname]/help

asked Sep 17, 2021 by john_shook (40 points)
3,348 questions
3,049 answers
7,789 comments
545,046 users