Use delegated authentication to enable self-service password resets for Active Directory (AD) mastered users. This feature must be enabled for your org.
If you have the group password policy feature enabled, the self-service password reset settings are overridden and the fields are not available.
When this feature is enabled, bulk password expiration includes AD mastered users.
- In the Admin Console, go to Directory > Directory Integrations.
- Select an Active Directory instance.
- Click the Provisioning tab and select Integration in the SETTINGS list.
- Scroll down and select the Enable delegated authentication to Active Directory check box.
- Click Save.