Use Keycloak to provide Self Service Password Reset to AD?

Afternoon all,

I’ve been wondering if it’s possible to use Keycloak to provide a self service password reset function to AD users. The AD is on-prem, not Azure.

I believe it’s possible to setup Keycloak to sync usernames and passwords with AD, but I can’t work out whether it’s possible to do the password resets via Keycloak if the user has forgotten their password .

Can anyone give me any guidance on whether this is even possible please.



A working example (with OpenLDAP): Working with Keycloak

Thanks for the reply, I’ll have a close look at what you have sent me.