If you have external partners with Active Directory accounts (e.g. for VPN connections) and password expiration enabled, this tool is for you. It checks the expiration of Active Directory password and sends a mail to the users with a link to change it:
- Mobile optimized web frontend to change Active Directory password
- Scheduler for checking password expiration of Active Directory users
- Sending HTML mails with a customizable velocity template
- LDAP interface of the Active Directory must be reachable
- SMTP server must be available
- Docker must be installed
- Docker-Compose must be installed
- Create docker compose file
docker-compose.yml
with your configuration data:
ad-password-handler-web:
image: chrisipa/ad-password-handler-web:latest
volumes:
- /etc/localtime:/etc/localtime:ro
ports:
- 8080:8080
- 8443:8443
environment:
- TZ=Europe/Berlin
- ad.server.host=my-ad-server-hostname-or-ip
- ad.server.port=389
- ad.server.base.dn=DC=my,DC=domain,DC=grp
- ad.server.user.dn=CN=Name,OU=Group,OU=Users,OU=Organisation,DC=my,DC=domain,DC=grp
- ad.server.user.secret=Password
- application.title=AD Password Handler Web
- application.url=http://my-app-url.com
- mail.from=test@test.com
- mail.host=my-mail-server-hostname-or-ip
- mail.port=25
- mail.send=true
- password.change.user.filter=(objectClass=person)
- password.expiration.cron.expression=0 0 0 * * ?
- password.expiration.days.till.expires=14
- password.expiration.user.filter=(objectClass=person)
- Run docker containers with docker compose:
docker-compose up -d