Skip to main content

Pia: Reset Network Password

Overview​

The package will reset the user's account password in either Active Directory or Microsoft Office 365 or both.

Platforms​

The package supports the following platforms

  • Cloud Hybrid
  • Cloud Only
  • On Prem
  • Semi-Hybrid

Requirements​

The package has different requirements depending on which platforms are being supported.

Cloud Hybrid Orchestrator agents in a valid state on

  • Primary Domain Controller
  • Azure Active Directory Connect Server

On Prem Orchestrator agent in a valid state on

  • Primary Domain Controller

Cloud Only

  • Microsoft Graph API Authorization and Delegation

Setup & Configuration​

What the package needs to be configured to operate successfully. Global Config

  • Primary Domain Controller
  • Azure Active Directory Connect Server

Microsoft Graph API

  • Authorization and Delegation configured

Process​

The steps that the package takes during process execution are:

tabset {.tabset}

Cloud Hybrid​

Step 1 Pia will connect to Azure and obtain a list of all users.

Step 2 Pia will prompt the Chat User with a list of users and request the Chat User to select a user to perform a password reset on.

Step 3 The mobile number of the user will be obtained via the User object in Azure (MobilePhone property) If this is not found, we will attempt to retrieve the mobile number from the contact in ConnectWise.

Step 4 Get the current details of the user account, including:

  • Locked Out Status
  • Password Expiry Date
  • Password Expired Status
  • Account Expiry Date
  • Account Enabled Status

Step 5 Generate a new password containing an Upper Case character, special character and numbers. This is a suggested password - but the format will generally meet password complexity rules.

Step 6 Present a form with some options before resetting the password, such as:

- The password which will be used (a suggested password is presented, but this can be overridden)
- An option to send an SMS after the password reset, containing the new password
- If SMS is selected, an option to provide the mobile number (the default value will be the user's mobile number if previously found).

Step 7 Login to the Domain Controller and perform a reset of the user password. If the password does not meet minimum complexity requirements, let the user know they need to try again with a different password.

Step 8 Pia will replicate the changes to all the other Domain Controllers in the forest.

Step 9 Pia will initiate an Active Directory PolicyType Delta synchronization with Azure.

Step 10 Pia will advise on the status of the password reset and advise if Microsoft Azure Active Directory sync has failed or was disabled

Step 11 If the SMS option was selected, send an SMS to the user with the new password. "Your password has been reset. New Password is: X If you did not request this, contact IT Support."

Step 12 Pia will advise on the completion of the password reset process.

Cloud Only​

Step 1 Pia will connect to Azure and obtain a list of all users.

Step 2 Pia will prompt the Chat User with a list of users and request the engineer to select a user to perform a password reset on.

Step 3 The mobile number of the user will be obtained via the User object in Azure (MobilePhone property) If this is not found, we will attempt to retrieve the mobile number from the contact in ConnectWise.

Step 4 Generate a new password containing an Upper Case character, special character and numbers. This is a suggested password - but the format will generally meet password complexity rules.

Step 5 Present a form with some options before resetting the password, such as:

- The password which will be used (a suggested password is presented, but this can be overridden)
- An option to send an SMS after the password reset, containing the new password
- An option to force the user to Reset the Password after their first login
- If SMS is selected, an option to provide the mobile number (the default value will be the user's mobile number if previously found).

Step 6 If the user account is blocked from signing in, re-enable the account.

Step 7 Tell Microsoft Graph API to perform the password reset with the new password.

Step 8 If the SMS option was selected, send an SMS to the user with the new password. "Your password has been reset. New Password is: X If you did not request this, contact IT Support."

Step 9 Pia will advise on the completion of the password reset process.

On Prem​

Step 1 Pia will connect to Azure and obtain a list of all users.

Step 2 Pia will prompt the Chat User with a list of users and request the engineer to select a user to perform a password reset on.

Step 3 The mobile number of the user will be obtained via the User object in Azure (MobilePhone property) If this is not found, we will attempt to retrieve the mobile number from the contact in ConnectWise.

Step 4 Generate a new password containing an Upper Case character, special character and numbers. This is a suggested password - but the format will generally meet password complexity rules.

Step 5 Present a form with some options before resetting the password, such as:

- The password which will be used (a suggested password is presented, but this can be overridden)
- An option to send an SMS after the password reset, containing the new password
- An option to force the user to Reset the Password after their first login
- If SMS is selected, an option to provide the mobile number (the default value will be the user's mobile number if previously found).

Step 6 If the user account is blocked from signing in, re-enable the account.

Step 7 Tell Microsoft Graph API to perform the password reset with the new password.

Step 8 If the SMS option was selected, send an SMS to the user with the new password. "Your password has been reset. New Password is: X If you did not request this, contact IT Support."

Step 9 Pia will advise on the completion of the password reset process.

Semi-Hybrid​

Step 1 Pia will connect to Azure and obtain a list of all users.

Step 2 Pia will prompt the Chat User with a list of users and request the engineer to select a user to perform a password reset on.

Step 3 Pia will generate a new password containing an Upper-Case character, special character and numbers. This is a suggested password - but the format will generally meet password complexity rules.

Step 4 Pia will present a form with some options before resetting the password, such as:

  • The password which will be used (a suggested password is presented, but this can be overridden)
  • An option to send an SMS after the password reset, containing the new password
  • If SMS is selected, an option to provide the mobile number (the default value will be the user's mobile number if previously found).

Step 5 Pia will advise the Chat User that continuing will change the user's primary login password and requests confirmation to continue, an option to have the password set to change at the next login is given.

Step 6 If the user account is blocked from signing in, re-enable the account.

Step 7 Pia will connect to Microsoft Azure and perform a password reset on the selected user.

Step 8 Login to the Domain Controller and perform a reset of the user password. If the password does not meet minimum complexity requirements, let the user know they need to try again with a different password.

Step 9 Pia will advise the Chat User that the password has been reset.

Step 10 Pia will send an SMS to the specified mobile number if previously chosen to do so.

Step 11 If the SMS option was selected, send an SMS to the user with the new password. "Your password has been reset. New Password is: X If you did not request this, contact IT Support."