Self-Service Contacts

Our environment has an AD User account and an External Contact for users (Mail Enabled Users are not an option). The distribution groups must be on the user's Contact.

We want to utilize the self-service features for joining their contact to a distribution group.

I am assuming I could use a combination of business rules to achieve this, such as "After User updates self > add to contact matching email > remove group from user." I am looking for ideas on managing the self-service functions for contacts.

I am also looking for assitance with giving the user visibility of the distribution groups their contact is in via web portal.

ago by (260 points)
ago by (307k points)
0

Hello,

For us to suggest a solution, please, do the following:

  • Specify what exactly you mean by managing the self-service functions for contacts.
  • Specify how exactly it is possible to determine whether a contact and a user account are related to each other. Live examples will be very helpful.
  • Provide us with a screenshot of the Multi-server environment dialog. The dialog displays how many Adaxes services you have and what their versions are. For information on how to view it, see https://www.adaxes.com/help/MultiServerEnvironment. You can post the screenshot here or send to us at support@adaxes.com.
ago by (260 points)
0

I was working on setting up the Self Service portion of Adaxes in the Web Interface so that users can join and leave Distribution Groups: image.png

Our environment is unique. The AD accounts accessing this portal are not mail-enabled. They have a Contact for the Distribution Groups. So the users have an AD account and a Contact.

I am looking for a way to continue to use the Self Service functions, but on their Contacts instead of their AD account. The two things I would like to accomplish are:

1. If initiator requests to join Distribution Group > look in AD for their Contact > if their email exists > add requested group to Contact. 2. View my Distrbution Groups shows the groups their Contact is in instead of their AD account.

I'd like to note that our Adaxes environment is working as intended, I just want to customize the Self Service features.

ago by (307k points)
0

Hello,

Thank you for the provided details. Unfortunately, there is nothing for the last two points from our previous post. Here they are again:

  • Specify how exactly it is possible to determine whether a contact and a user account are related to each other. Live examples will be very helpful.
  • Provide us with a screenshot of the Multi-server environment dialog. The dialog displays how many Adaxes services you have and what their versions are. For information on how to view it, see https://www.adaxes.com/help/MultiServerEnvironment. You can post the screenshot here or send to us at support@adaxes.com.
ago by (260 points)
0

Specify how exactly it is possible to determine whether a contact and a user account are related to each other. Live examples will be very helpful.

This is information I was looking to get from you as I am struggling to figure out how to do this in the Web interface and console.

However, all I have really put together is this (again, I am looking for ideas for making my original request to work):

$useremail = %adm-InitiatorEmail% $contactemail = Get-ADobject -Searchbase "OU=External Email Contacts,DC=LOGIS,DC=ORG" -Filter 'Mail -eq $useremail' image.png

Provide us with a screenshot of the Multi-server environment dialog. The dialog displays how many Adaxes services you have and what their versions are. For information on how to view it, see https://www.adaxes.com/help/MultiServerEnvironment. You can post the screenshot here or send to us at support@adaxes.com. image.png

1 Answer

ago by (307k points)
0 votes

Hello,

Thank you for clarifying. As the user and the contact account have the same email in your Active Directory, you can use the following approach:

  • Create a scheduled task like below that will set the Assistant property of the target user to the distinguished name of the contact.
  • Grant user the permissions to modify membership of the required groups: https://www.adaxes.com/help/GrantRightsToModifyGroupMembership.
  • Create a web interface action of the Add to group type that will be configured to only add the contact specified in the Assistant property of the initiator to the selected group. The following tutorial will be helpful: https://www.adaxes.com/help/ConfigureActionsPane/. image.png
  • If necessary, create a business rule triggering Before adding a member to a group that will cancel the operation for certain initiators if they try to add any member except for their contact. It will look like the following: image.png

Related questions

Self-Service Business Rules and Operations issues

I have created two business rules: Do not enforce password change after self service Enforce password change after restting password of a user For some reason, when I self reset ... any business rule. I can't find any Operation that is "Change own password"

asked Oct 25 by apruitt (260 points)
0 votes
1 answer
No 'Confirm Password' box in Self-Service after 2025.1 upgrade (myaccount/web)

We recently upgraded to 2025.1 and noticed (see screenshot) that there is no confirm password box for self-service password reset now. I cannot find in web config or ... password, and since there is no Confirm Box; they are setting an incorrect new password.

asked Oct 8 by stevemkoenig (20 points)
0 votes
1 answer
Is it possible to have users enter an external "recovery email address" during self service password portal enrollment?

The mail attribute pulls from their Active Directory email attribute which for most of our users is their internal email address. They would not be able to ... ourselves and the users could just provide their external email address during portal enrollment.

asked Sep 22 by jturgeon (20 points)
0 votes
1 answer
self-service enroll

I am wondering if I can force auto-enroll without pre-filling asnwers to the questions? So the behavior I am looking for it > user goes to self service ... to answer the questions for them: https://www.adaxes.com/help/AutoenrollUsersForSelfPasswordReset/.

asked Mar 12 by apruitt (260 points)
0 votes
1 answer
Self-Service Portal error visibility

Is there any way to disable this error message from showing up in the Self-Service portal? It is not somethign we want our users to be seeing. We do get an email when the license count is over.

asked Nov 28, 2024 by apruitt (260 points)
0 votes
1 answer