Generate initial password on user creation

With the help of property patterns, you can set up a template for generating initial user passwords. When creating a user via Adaxes Web interface or Administration console, the initial password is filled into the Password field on the user creation form. If a new account is created using a script or during data import and the Password property is not set, the password for the new user is generated according to the template.

It is possible to communicate initial passwords to new users by sending them an SMS or an email. For details, see Send initial password to users.

In this tutorial, you will learn how to configure a built-in property pattern, User to generate initial passwords for new users.

  1. Launch Adaxes Administration console.

     How { #collapse1}
    • On the computer where Adaxes Administration console is installed, open Windows Start menu.

    • Click Adaxes Administration Console.

  2. Expand Adaxes service \ Configuration \ Property Patterns \ Builtin and select User.

  3. In the section located to the right, click Add, and then click Password in the drop-down list.

  4. Specify a template for initial passwords.

    To create a unique password for each account you need to use value references (e.g. %username%). During user creation, value references are replaced with corresponding property values of the new account.

    Example:

    %username%-%employeeID%
    

    The value references in the template will be replaced with the local part of the Username and the value of the Employee ID properties, and the generated password will look like johndoe-123321.

    To generate random passwords, you can use value reference %adm-RandomString%. For example, the following template: %adm-RandomString,12% can be used to generate a random password of the length of 12 characters.

    When done, click OK.

  5. Click Save changes.

Any changes made to built-in property patterns can be discarded. To do it, right-click a property pattern and then click Restore to Initial State in the context menu.

Different patterns for different users

By default, property pattern User is applied to scope All Objects.

This means that the property pattern can be used to specify the same password template for all users in all domains managed by Adaxes. If you want to apply different settings for different organizational units or domains, you need to create a separate property pattern for each OU or domain.

 How to create a property pattern { #howto_multiple_pattern}
  • Right-click Property Patterns, point to New and click Property Pattern.

  • Enter a name for the new property pattern and click Next.

  • On the Object Type step, select User.

    Click Next.

  • On the Configuration step, configure options for a property and click Next.

  • On the Activity Scope step, click Add.

    Select from the following items:

    • Domain – select to apply the property pattern to all users in a specific domain.

    • OU or Container – select to apply the property pattern to users in an organizational unit or container.

    • Group – select to apply the property pattern to members of a group.

      Assignments over group members are not applied during user creation.

    • Business unit – select to apply the property pattern to members of a business unit. To select a business unit, open the Look in drop-down list and select the Business Units item.

    You can exclude specific organizational units, business units, groups, and domains from the activity scope of the property pattern. For example, if you assigned the property pattern over the whole domain, but do not want it to apply to a specific organizational unit, you can exclude the organizational unit from the activity scope. To exclude an object, select the Exclude the selection option in the Assignment Options dialog box.

     Step by step { #exclude_scope}
    • Click the object you want to exclude.

    • In the Assignment Options dialog, select the Exclude the selection option.

    • Click OK.

  • When done, click Finish.