Password Reset Application

Go to solution
Jim Coyne
Kilo Patron

‎08-13-2014 08:23 PM

Anyone try using the new Password Reset application in Dublin / Eureka?   I was wondering how easy it is to integrate with AD.   How long did it take to get up and running?   Pros?   Cons?   Any hidden issues?

 

I'm also wondering if the "Password Reset - Orchestration Add-on" requires the Orchestration plugin as well.   I would assume so, the wiki does not explicitly say so, but I don't like to assume anything with SN licensing anymore.  

 

Thanks

Jim

Labels:
0 Helpfuls
  • 8,836 Views
1 ACCEPTED SOLUTION

Go to solution
TrevorK
Kilo Sage

‎08-19-2014 01:30 PM

One of the challenges we found with the AD Password Reset is that, using the built-in ServiceNow workflow items, the account needed to be a Domain Administrator (which our AD Team would not allow).   We ended up having to develop our own powershell command to do the password reset on the MID Server, rather than using the SN way of calling out to the DC. Not hard, but frustrating. It appears that those who do Discovery had the same sort of issues when I did a search at the time.



You can do the AD Password Reset without Orchestration as far as I recall when you write your own commands to work with the Powershell probe on the MID Server. We had to do this and I seem to recall thinking that it is a loophole or something, because you can write everything through the MID Server without much trouble.



One other thing we also found is that the ServiceNow SMS feature did not text to phone number, it texted to 11122233333@att.com, and thus required the carrier information to be present. We ended up just coding a call to Twilio, which was easy enough, and it handles the text to phone number (as our phone numbers sync from an external system).



We really found it was shoe-horning ServiceNow into a world where we could perform the tasks we need much better without ServiceNow (we need to share data with ERPs), and just use a web service to feed the data into ServiceNow about what is being done (failed attempts, successful attempts, etc). I also seem to recall that SN had a Password Reset app (above and beyond Orchestration) but you paid a monthly fee for each user in your system, and with 180,000+ users, that was not going to work too well for us.



I am using words like "I recall" and a lot of past tense because we are going a different route for password reset. But I have it all developed (without the use of Orchestration workflow items even though we have Orchestration) and such in our instance to demo the functionality of it.



Oh - I should also state I have only used this in Dublin/Calgary, not Eureka. We do not have that loaded yet.



Hopefully that helps. As you can tell, sometimes I ramble on too much.


View solution in original post

36 REPLIES 36

Go to solution
TrevorK
Kilo Sage
In response to SJ9

‎12-11-2014 08:39 AM

Sorry, I wish I could be of more help. I just enabled the Password Reset plugin in demo008 and it loaded the new application menu without issue. My only advice would be to look under the application menu config (System Definitions -> Application Menus) to see if it is disabled/inactivated for some reason, and to double check the plugin log to see that the entries all were successful (I have never seen an error, but assume "status" would change to error or warning. I guess you could also contact SN support and they might be able to re-run that portion of the script for you too.



As well, you could load it in any of the SN Demo instances and just export the menu to XML and re-import it (or just manually copy it over one-by-one). It does not fix the issue of it not showing up, but it does give you the menuing system.


Go to solution
SJ9
Giga Contributor
In response to TrevorK

‎12-22-2014 07:25 PM

Hi Trevor,



Thanks - it looks like we need to have an AD transform map created that ties in with our AD in order to get this working.



Will be working on this in the coming weeks so will post back how we go.



Regards,


Steve


Go to solution
Derek10
Tera Expert
In response to TrevorK

‎10-08-2015 04:44 AM

Hi Trevor,



Congratulations on your deployment of a PRA so early in the year, we have just begun doing it in now for our global release.



How did you handle different languages, or do all of your employees know one language?


Go to solution
TrevorK
Kilo Sage
In response to Derek10

‎10-08-2015 09:15 PM

Sorry - our user base is only English so we did not have anything extra to deal with. However, I would think if SN did not handle multiple languages for you (I thought they did this to some extent), you could easily create a series of pages that are language specific I assume.


Go to solution
No NaME
Mega Guru

‎02-28-2017 08:40 PM

TrevorK , jim.coyne do we have any video or wiki link that explains how to set up 'reset the ad password for users(LDAP integration with servicenow)' from servicenow.



Any info on this will be appreciated.




Thanks!