Enable Active Directory delegated authentication
Use delegated authentication to enable self-service password resets for Active Directory (AD)-sourced users.
If you have the group password policy feature enabled, the self-service password reset settings are overridden and the fields are not available.
When this feature is enabled, bulk password expiration includes AD-sourced users.
- In the Admin Console, go to .
- Select an Active Directory instance.
- Click the Provisioning tab and select Integration in the Settings list.
- Scroll down and select the Enable delegated authentication to Active Directory check box.
- Click Save.