Adaxes

Self Service Client Security Considerations

0 votes

Hello

Could you expand on the level on encryption used during the password reset between the self service client and Adaxes? Is it 128 or 256 AES or something proprietory?

Thank you

by (700 points)

1 Answer

0 votes
by (216k points)
selected by
Best answer

Hello,

During the Self-Service Password Reset from the Windows Logon Screen, the actual process of password reset is performed via Adaxes Web Interface. All security-sensitive information is encrypted using the RSA encryption mechanism with a 1024-bit key.

Since Adaxes Web Interface is an IIS web application, you can additionally enable SSL for the Web Interface in order to improve security. Since, Self Service Client and Direct Access, you are going to expose the Web Interface to computers located outside of your on-premises network, we would recommend enabling SSL for the Web Interface. This can be done the same as for any other IIS web application.

0

Thanks for the information. I tested through Direct Access yesterday and if works perfectly.

by (700 points)
0

Hello,

Thanks for the update!

by (216k points)
0

Thanks for the information. I tested through Direct Access yesterday and if works perfectly.

If you're using DirectAccess, that's already a VPN system, so any information between the client and your network is fully encrypted anyway... but it couldn't hurt to also use SSL/HTTPS for the self-service website. :)

by (260 points)

Related questions

0 votes
1 answer
Question on self service client tool for mac

Can Self service client tool work on macbooks with local account setup. Our macbooks are managed by Kandji MDM, which have local accounts setup on each machine and not ... will sync local accounts with their AD password on macbooks setup with local accounts.

asked Mar 29, 2023 by Vish539 (460 points)
0 votes
1 answer
Can the Self Service Client be installed using SCCM instead of a GPO?

We are looking at Adaxes as a way to update user's passwords offline and updating the computer's cached password. Currently, a majority of our computers are off the network ... via the Internet. Is this a viable option? What issues are we not considering?

asked Sep 18, 2020 by bmajors (20 points)
0 votes
1 answer
How many msi versions of Adaxes Self service client exist for 2017 version?

We have the 2017 version of ADAXES, and recently decided to deploy the Self-Servece but even the agent is installed on computers and we did all configuration (gpo, and ... denied" on lock scree process but the users can perform their change password from IE!

asked Mar 12, 2020 by Gabriel Abarca (20 points)
0 votes
1 answer
Adaxes Self-Service Client

How often does the Adaxes Self-Service Client get updated and when it does, how do we update the workstations that it is already deployed on?

asked Dec 27, 2018 by StuartC (90 points)
0 votes
1 answer
Self Service Client

Short and quick: When the user completes changing their password or unlocking their account from the Windows login screen and hits the FINISH button, can the client be set to close ... is 2017.1 and we are just about to upgrade to the current version. thanks

asked Aug 8, 2018 by jiambor (1.2k points)
3,549 questions
3,240 answers
8,232 comments
547,820 users