Atria Configuration - Self Service Password Reset

Atria Configuration - Self Service Password Reset

Background Information

Forgotten passwords and associated reset processes cause frustration and lost productivity for end-users.  For IT providers, it consumes time and increases costs.  For Support staff, it’s a tedious task.
Atria Self Password Reset (SSPR) allows users to reset their own Passwords, without needing to contact the help desk.  If users choose to contact the helpdesk, Atria also provides a verification mechanism that streamlines the password reset process.

How does it work?

  1. Each user has the option to be configured with a recovery email address, users can configure this email address themselves, or an administrator can set this for the user.
  2. The Reset process requires the user to enter their login name, Atria will also present a CAPTCHA to validate that a human is entering the reset process.
  3. If the username is a valid account managed by Atria, Atria will dispatch an email with a reset link.  This will be sent to (a) their Recovery Email Address, if this is not set, it will send to their external email address.
  4. The user clicks the link, MFA verification will then take place (if enabled), when verified, the user is able to enter a new password.
  5. The password is verified, and a user notification is sent out to the user to confirm the password has been changed.

Enabling Self-Service Password Reset (SSPR) within Atria

SSPR is enabled via the Customer Portal Settings – this is an Atria Service.  Enabling for each Atria Location, will default the setting to enabled for all Customers within that Location.
The setting can further be controlled at a Reseller, or Customer level, If you wish – you can disable the feature for an individual customer, or turn off by default, and explicitly enable on a customer by customer basis.
Note that if the setting has been enabled on the root customers reseller service, it will cascade and be enabled for all sub-customers. 

The property “Self Password Reset Feature” is shown below.

Graphical user interface, application, TeamsDescription automatically generated

Once the feature has been enabled, Users can be configured for Self Service Password Reset.

Self Configuration of SSPR 

Users should be directed to login to the Atria Portal, and click the “Password” link, always displayed at the top right or on the left hand navigation bar.

From here, the user can simply enter their email details.  

Graphical user interface, applicationDescription automatically generated


Administrative Configuration of SSPR for an individual user

An administrator with permissions to edit a user is also able to update the recovery email address for the user.  

  1. Locate the user using the Search bar, expand the user.
  2. Select “Edit User” 
  3. Expand “Additional User Properties” to show the “Recovery Email” field:


     
    Graphical user interface, applicationDescription automatically generated


Email Notifications

Three new notifications have been added to support the SSPR and User Verification features.

  1. Email Verification
  2. Password Changed Notification
  3. Password Reset Link 

Emails are sent from Atria using the Email Notifications system.  Email notifications can be fully configured through the Atria portal by a Service Provider Administrator, including customization for language or individual resellers/customers.

See the scribe here on how to change these - Atria Configuration - Change an Email Notification

End User Process for resetting a password:


What pre-setup is required?

The “Recovery Email Address” has been setup for the user, this is a manual step where an alternate email address needs to be setup for the users. These steps have been described above, but below are additional Scribes on how to quickly carry this out.
  1. The Service Provider can set this up for the user by Impersonating the User
    How to set the Recovery Email Address as an Administrator
  2. The end user will need to be able to login to set the Recovery Email address.
    How to set the Recovery Email Address as an End User

Step 1 : Select the “Forgot Password” Link to start the reset process



Step 2 : The user enters their username or UPN (typically their usual work email address)



Step 3 : The User completes the Captcha to verify they are human




Step 4 : User selects the “Reset Password” Button:



Step 5 :  Password Reset Link is emailed to the user:




Step 6 :  If the user consumes Atria MFA - They will be required to enter the Two Factor Code from their Authenticator Application



Step 7 :  The user will then be required to enter a password that meets the Password Requirements that is outlined on the right

After this step is completed, the user is redirected to the login screen, with their password being successfully reset.




    • Related Articles

    • Updating Atria Service Account Password – v12.13

      Overview This article is a guide for Updating Atria Service Account Password both in Primary and Remote Environment. This only applies to version v12.13 Service Account Details (Core) Both Primary and Remote Environments have 4 core service accounts ...
    • Atria Billing Setup User Guide

      Objective This article describes how to configure Atria to utilize the latest billing features. This document outlines the billing setup attributes that should be configured.    Applies to Introduced in Atria version 12.0.0 Billing Setup Overview To ...
    • Service Billing Summary Report

      Objective This article describes the information contained in the Billing Summary Report.     Applies to Introduced in Atria version 12.0.0 Billing Summary Report Overview The service billing summary report is designed to highlight the billable ...
    • Planned Retirement of Hosted Apps and Desktops Service

      Overlap between existing Atria service modules Atria has two core service modules used for managing Desktops, Applications and associated Resources.  These are known as “Citrix” Service, (CITRIX) and “Hosted Apps and Desktops” Service (HAAD) These ...
    • How to Update AD Sync Service Binaries (Atria)

      Overview This article is a guide on how to update the AD Sync Service binaries on each AD Sync client. The latest update made to AD Sync Service was on Atria 12.6.8 in order to support TLS 1.2 implementation on Atria environment Affected Version ...