specops software logo

Specops Authentication Client Permissions for Rules UI

The Specops Authentication Client (version 7.15 and later) provide real-time feedback to end users as they are changing their passwords through CTRL+ALT+DEL Change Password… The client runs under the context of the machine’s system account and uses the computer... Read More

specops software logo

Configure Specops Authentication Client to Prefer SPR

In environments where both Specops uReset and Specops Password Reset are installed, Specops Authentication clients will by default direct users to uReset to enroll and reset/change their passwords. We can configure the client via Group Policy or Windows registry... Read More

specops software logo

Updating the Specops Arbiter Server Certificate

The Specops Arbiter service uses a self-signed certificate to encrypt communications from domain controllers to query the Specops API. If this certificate is expired or inadvertently deleted, the Arbiter server may not be able to start. Identify the Certificate... Read More

specops software logo

Specops Authentication Configuration Hardening Guide

Specops Authentication services (uReset, Secure Service Desk, Key Recovery) run on public cloud infrastructure and by default are accessible from anywhere on the internet. We offer several features that can enable admins to restrict access to certain features of... Read More

specops software logo

Granting Access to Password Reset Leaf Objects

Password Reset stores each user’s enrollment data in a leaf object underneath the user’s account (specops-spp-pwdReset) By design, access to these leaf objects is restricted as follows: SYSTEM – Full Control Domain Admins – Full Control Password Reset Service... Read More

specops software logo

Permissions Required To Administer Specops Password Policy

Specops Password Policy is designed to be administered by users with full administrative access in Active Directory. All administrative components run under the context of the user logged into Windows and interact directly with areas of Active Directory where... Read More

specops software logo

Hide All Specops Authentication Client Components

Organizations may wish to deploy the Specops Authentication Client but keep all features hidden until a scheduled go-live. The ADMX Templates for the client may be used for this purpose to hide enhancements to Windows logon and password change,... Read More