Password Reset tool for Self Service

casareanderson
New Contributor III

Hi has any one got any simple way of getting user ad password and mac password to sync after reset

8 REPLIES 8

mm2270
Legendary Contributor II

Can you elaborate a bit more on the issue you're trying to solve? Do you mean if the user's AD password is changed within AD and then later getting the Mac to sync the password change? If not that, can you explain what the problem is?

casareanderson
New Contributor III

Hi @mm2270 Basically we users who have to come to us to reset there password , due to fact there password does not sync with AD on there machine , i was wondering if anyone has found a solution around passwords not sycing with AD

dgreening
Valued Contributor II

We have, and its called Apple Enterprise Connect :)

mm2270
Legendary Contributor II

As @dgreening indicated, there are some solutions out there. Some are paid for and officially supported products, like Enterprise Connect (from Apple). Others are custom solutions, like ADPassMon There are also some simple custom scripts to help alert users about password issues.

I would encourage you to look into some of these. Password sync problems with AD accounts are actually a very common issue, so lots of folks have taken aim at this to come up with solutions already.

chad_fox
Contributor II

I've had the best luck just communicating the proper way to change AD/Mac passwords to the user.

For starters, only change passwords via system preferences. This should be done while on the company network or for remote users while connected to VPN. This should resolve most issues with keychains not syncing.

When it comes to resetting, are you doing this directly from Active Directory? Or do you have a password reset site for your users.

Other examples:

https://www.itg.ias.edu/content/how-change-network-account-password-mac-osx

http://connect.spps.org/changing_your_password_on_a_mac

https://it.ucsf.edu/how_do/change-account-password-mac-os-x

https://its.uncg.edu/Accounts/Passwords/Mac/

I took the key points and created instructions for our users. The amount of HD tickets and calls dropped after forcing users to use a specific method.

Hope this helps.

iJake
Valued Contributor

Add my vote for Enterprise Connect from Apple PS.

mark_mahabir
Valued Contributor

NoMAD is another potential solution that we are currently investigating.

ThijsX
Valued Contributor
Valued Contributor

NoMAD works great in our organisation with the AD bind active.