This is by design for one of two reasons.
Since the user is locked out of their AD account and has not yet registered with Password Manager, they must contact their help desk or PM administrator in order to get their AD account unlocked. The user must then register with PM.
Once this is done the user will be allowed unlock their account through the PM Self-Service site unless it has been configured by the PM administrator to disable certain workflows.
To enable workflows so they will be available to users who are registered with PM but are locked out of their AD accounts, navigate to
PMAdmin | Management Policy
Under the ‘Enable the workflow’ heading configure either the ‘Always’ or ‘Depending in ….’ Radio button.
Under the ‘Show the workflow on …..’ heading configure either the ‘Always’ or ‘Only if the workflow ….’ Radio button.