Reset Password Management offers end-users an interface that is both secure and easy to use
Reset Password Management offers end-users an interface that is both secure and easy to use. At the same time, administrators are offered full control over the validation process.
They determine the validation questions and specify how many questions must be correctly answered to allow a password reset. This virtually eliminates any possible errors in the reset password process.
Less involvement of IT staff
Password reset requests form a substantial part of all helpdesk calls. Such requests often show a peak on Monday morning and during holiday seasons. Higher call volumes will not only require extra staff to cope with the frustrating task of resetting passwords. An organization also runs the risk that other important Helpdesk tasks remain unattended or unresolved.
The password requests volume is also related to the password procedures in an organization. The volume will increase significantly if the password complexity rules are enabled. The same will likely happen if the period allowed for a password reset is reduced.
With SSRPM, end-users can reset their own passwords. They do not have to wait until the helpdesk can service their requests. This will drastically reduce both user downtime and the number of calls to the Helpdesk.
Increased security
Few organizations have a strong policy in place for lodging and servicing reset password requests. Imagine the consequences if an employee calls the Helpdesk for a password reset request, pretending to be the senior financial officer John Smith.
How does it work?
Self Service Reset Password Management is based on the principle that an end-user can reset his own password, without involvement of the helpdesk, by simply answering a series of challenge questions (e.g. What is the name of your best friend).
Here are some key features of “Reset Password Management”:
General
· “Forgot my password” button on the login dialog.
· Multiplatform support, to be able to for instance reset the password of a user account on other systems, like: UNIX, Linux, Novell and a lot more.
· Windows Vista support, with which a “Forgot My Password” link will be added to the Windows Vista logon screen.
· Multilingual support for the languages: English, French, German, Italian, Spanish, Polish, Portuguese and Dutch.
· COM interface to support full end-user web functionality, so that users can enroll and reset their passwords via a web browser.
· End-users can reset their password and unlock their account without intervention of the helpdesk.
· Enrollment is integrated in the user login. If a user logs on when he/she is not yet enrolled he/she will be asked automatically to enroll.
· Number of questions, which questions, number of retries can be determined by the sys admin with the SSRPM Admin Console
· Password is reset and account is unlocked in Active Directory, other platforms and applications will follow shortly.
Sys admin features
· Easy to use wizard interface to roll out SSRPM into the organization.
· SSRPM can be configured on domain or OU level.
· Configurable number of questions.
· Password complexity confirmation suggestions when an end-user resets his password. Like “Make sure that you password is 7 characters long”.
· Fully integrated logging of all SSRPM actions in the network by console and end-users.
· Sys admin can be notified when an event occurs (for instance when a user enrolls or resets his or her password).
Security settings
· Support for password policy enforcement capabilities: Password History, Minimum Password Age and Password Complexity.
· End-user answers are encrypted and stored with MD5 irreversible hash key.
· Number of retries can be set.
· Number of predefined and end-user questions can be set.
· Different security levels can be used from weak to strong.
· Enable/disable the option to show end-user which answer is wrong.
· Enable/disable readable answers typed in by end-user.
· Several answer comparison options to improve security.
SSRPM Admin Console
· Global overview of end-users which are not enrolled, enrolled.
· Overview of wrong password reset requests.
· Dashboard overview of the current status of SSRPM.
Limitations:
· 30 days trial
What’s New in This Release: [ read full changelog ]
· Support for Microsoft SQL 2000 and 2005 (all versions) has been added. The SSRPM Service can now store all user information in a Microsoft SQL database.
· Users that have been deleted from the active directory will be automatically unenrolled from the SSRPM Service. All information regarding this user will be deleted from the SSRPM database.
· When the Enrollment Wizard or the Reset Wizard failed to connect they would display a ‘connect to server’ dialog even though messages were disabled through the ‘EnrollmentWizardDisableMessages’ in the GPO.
· In version 4.00 build 1016 the password reset would fail if the SSRPM service was not installed on a domain controller
· The SSRPM Service upgrade failed sometimes because of unexplained RPC errors.
· The log was filled with (non critical) errors regarding name translation. These errors have been given a different log level which can be turned on or off in the logging tab of the Service Configuration dialog.
· The service sometimes crashed right after an enrollment or password reset if the UMRA connector was enabled. This issue has been fixed.
· If a user name was not entered in the edit box in the GINA an error was generated in the Admin Console.
· The WelcomeTitle entry in the LocaleResetWizard.txt file was not used, in stead the WelcomeHeader was used.
· Custom locale files located on the network were not being loaded properly.
· The SSRPM service would rarely crash when trying to load the UMRA COM object.
See Demo – Download – Visit Author Site
Please comments and give ratings. You may also report of broken or incorrect link using comments box below. Thanks!