SelfServiceADReset - Browse /css at SourceForge.net

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
install.css	2010-09-25	1.3 kB	0
adipart.css	2010-09-19	1.7 kB	0
jquery.notifyBar.css	2010-08-16	723 Bytes	0
Totals: 3 Items		3.7 kB	0

Self Service AD Password Reset
This toolset allows users to 
1) Reset their (forgotten) password to a random one link is sent to the email address contained in AD
2) Change their password if they don't have direct workstation access to the domain (remote users) 

Credits : 
This code is copied and simplified from ADIPART (on SourceForge) originally written by Leon Garcia https://sourceforge.net/users/leongarcia
All credits to him. 

This simplified version doesn't require a Database but simply the presence of the email field for all AD users. 
On username or mail address entering, the user receives an Email with a link to have his/her password reset. 

Installation instructions: 

-	Make sure your server is registered in your DNS (required for Captcha)
-	Install IIS 
-	Install PHP for IIS from : http://www.php.net/manual/fr/install.windows.iis7.php (follow the CGI and following instructions for a safe installation of php)
-	Create a new website (e.g. c:\inetpub\wwwroot\ssadpr\) (responding to a specific port if 80 is already used) 
-	Register with google captcha webservice (you will need server name) : http://www.google.com/recaptcha/whyrecaptcha
-	Download SSADPR from SourceForge : https://sourceforge.net/projects/selfserviceadreset/files/?source=navbar
-	Install the files on your website (e.g. c:\inetpub\wwwroot\ssadpr\) 
-	From your DC, Export your CA certificate (no private key export, base64 format) and save it as " exported_root_CA.cer"  
-	Create  a folder : C:\OpenLdap\sysconf\ (case is important, this is apparently hard coded in the LDAP extension for PHP/IIS)
-	In this folder put a copy of your exported certificate
-	In this folder put the following file : C:\OpenLdap\sysconf\ldap.conf with the following 2 lines
o	TLS_REQCERT never
o	TLS_CACERT c:\OpenLDAP\sysconf\exported_root_CA.cer
-	Edit ..\include\configpage.php as follows: 
o	$LDAPHOST="name of your DC";
o	 $LDAPADMIN="AD account with password reset priviledges";
o	 $LDAPADMINPASS="password of account above";
o	 $LDAPDATAFIELD="mail"; // name of the " mail " field in your AD . normally "mail" 
o	 $LDAPDOMAIN="dc=company,dc=com";
o	 $LDAPLOCALDOMAIN="full domain name";
o	 $LOGO="images/self.png";
o	 $mailsender="name.of.email.sender@your.domain.com";
o	 $LOCALMTA="Full name of the SMTP Server"; 
o	 $sendername="Name to sign the emails";
o	 $website="http://website this application is running on/adipart/";
o	 $recaptcha_pub="public key given by google captcha registration";
o	 $recaptcha_priv="private key given by google captcha registration";

-	That should be it.  Point your browser to http://your.web.site/index.php and enjoy

PO

Source: README, updated 2014-01-31

SelfServiceADReset Files

A very simple Self-Service Password reset tool for Active Directory