This is how it works:

• After successful identity verification, ADSelfService Plus resets the user password using a randomly generated temporary password.

• ADSelfService Plus now attempts to change the temporary password (old password) of the user account using the user provided password (new password). 

• Active Directory performs the password history check for the user provided password since it is a change password operation.

Note: To make this feature work, you need disable the user cannot change password option in Active Directory.

Here's how you can enable it: 

• Go to advanced settings of a self-service policy
• Click Reset & Unlock tab
• Select the option Enforce Active Directory password history settings during password reset
• You can choose whether to enable this only for password expired users
• Choose whether you want to hide the old password field while password reset. If you indeed choose to hide it, then ADSelfService Plus will use a temporary password to reset the password as discussed in Step 1 in the above section.
• Click OK to save the settings.