Guide
  1. Secure your network
  2. Identity and identity providers (IdPs)
  3. Advanced settings of an IdP

Self-service password reset for Active Directory Users

EAA allows users to reset their password without the need to contact the IT administrator. This self-service reduces the friction for the end-user and also reduces the additional work for administrators from routine password-reset tasks. It is supported in English and Japanese languages only.

📘

Note

This feature must be enabled in your contract by contacting Akamai Support.

Enable Password Reset in the Identity Provider

You can allow your end-users to reset the password for active directory associated with the IdP.

  1. Log in to Enterprise Center.

  2. In the Enterprise Center navigation menu, select Application Access > Identity & Users > Identity Providers.

  3. Select your IdP to open it.

  4. Go to Settings > Advanced.

  5. Enable Password Reset.

  6. You must have an Active Directory associated with the IdP. These configurations are available:

    1. In the Directory > Settings page, you must use Host ldaps option.
    2. Enable Allow users to change password and Allow users to reset password in the Advanced Settings page. See Password Management for AD, LDAP directory services. Note: Follow password restrictions while selecting the password.
    3. The user or users must be added to the groups for whom you want to allow the self-service password.

  7. Click Save and Deploy, to save and deploy the changes.

End-user experience

The end user follows this procedure to reset their password:

  1. The end-user logs into the IdP login page, they click on the Change or Reset Password link.
  2. Enter the Username and Captcha.
  3. Click Submit.
  4. A confirmation message is shown indicating that an email is sent to the end-user with steps to reset the password.
  5. An email is sent to the end-user with the organization email added by the admin to the groups in the directory. The email template is as under:
self_service_password_reset
  1. Click the Reset Password link. The link is valid for 15 minutes and then it expires.
  2. Enter the New Password and Confirm Password. The password restrictions for setting the password are shown to the end-user.
  3. Click Submit.

A success confirmation message is shown to the end-user, indicating the password has been reset.