Active Directory

Reset your forgotten password using Fortified ID Password Reset.

Overview

If you like to get an overview of Fortified ID Password Reset, please check out https://www.fortifiedid.se/products/password-reset.

The use case will only cover the configuration of password reset when resetting a password against Microsoft Active Directory. The configuration also includes scenarios where a delegated administrator can reset a password for someone else, for example a teacher can reset their students' forgotten passwords.

Prerequisites

  • You have already installed Fortified ID Password Reset and configured it as an SAML SP against an SAML IdP, for example Fortified ID Access.

  • Configuration of the SAML IdP will not be covered in this use case.

Scenario

This use case will provide example configuration when you have successfully authenticated your self and like to reset your Active Directory password. The use case will only cover Password Reset configuration ant NOT configuration of any SMAL IdP.

Configuration

Download configuration

Note that this use case does not cover installation of the product.

  1. Download ZIP containing example configuration of Password Reset configured using Active Directory.

    1. Click USE_CASE_LINK to download example configuration.

Replace your modules folder with the one in ZIP-file

In this use case we will replace your installation modules folder with one prepared for Active Directory. Most files are ready to use out of the box, some files need to be customized for your environment. See below.

Replace your modules folder with the one from ZIP-file

  1. Unzip the downloaded customer_pwdreset_active_directory.zip

  2. Stop Fortified ID Password Reset service if it is started

  3. Open Windows Explorer and go to: drive:\..\FortifiedID\pwdreset\

  4. Rename the customer folder to customer_org

  5. Add the customer folder from zip-file to drive:\..\FortifiedID\pwdreset\

Update globals.json

  1. Open globals.json in drive:\..\FortifiedID\pwdreset\customer\

  2. The following parameters must be changed to map your environment

    "ldap_base_dn": "dc=company,dc=local",
    "ldap_host": "127.0.0.1",
    "ldap_port": 636,
    "ldap_bind_dn": "CN=admin,CN=Users,DC=company,DC=local",
    "ldap_bind_password": "admin_secret_password"
  3. The other parameters maps to default configuration of password reset.

  4. Save global.json

Verify authn.json

This file have configuration that maps your SAML SP to the SAML IdP. Update if needed to map your environment.

Verify other files to match your environment

Other files do not need to be changed unless you have made your own customizations that do not match the default configuration after installing Fortified ID Password Reset.

Start Password Reset service and verify the scenario

Last updated