First, if you need to send passwords to directories other than Azure AD and AD DS, deploy MIM Sync with connectors to Active Directory Domain Services and any additional target systems, configure MIM for password management and deploy the Password Change Notification Service. ![]() Deploying MIM for password management does not require the MIM Service or the MIM self-service password reset or registration portals to be deployed. When deploying Azure AD self-service password reset, Azure AD Connect supports writing back the new passwords to AD DS, and MIM Password Change Notification Service can be used to forward the passwords to other systems, such as another vendor's directory server, as well. Azure AD self-service password reset provides both a web-based and Windows-integrated experience for a user to reset their own password, and supports many of the same capabilities as MIM, including alternate email and Q&A gates. For new customers who are licensed for Azure Active Directory Premium, we recommend using Azure AD self-service password reset to provide the end-user experience.
0 Comments
Leave a Reply. |