If you represent an enterprise, non-profit organization or educational institution, users, faculty and administrators at one point in their life have all felt the same pain when it comes down to forgotten passwords. What tend to be more dynamic are the contexts in which those forgotten passwords surfaced in the first place. For instance, if you’re a student at a local community college, resetting your forgotten password may result in you having to call the help desk for a simple reset or an account lockout. If you’re on the administrative side of the fence, a large volume of helpdesk calls isn’t always the only headache you encounter. In many instances, forgotten passwords and password resets lead to security problems.
Self-service password reset (SSPR), regardless of your environment, is a great feature to have when you or your end-users are suffering from what has become commonly known as password fatigue. When it comes down to choosing the right method of SSPR, however, security precautions must be taken into consideration. When organizations get to the point where they become so fed-up with forgotten passwords, they tend to take the easy way out—enabling users to reset their forgotten password to a default standard. In many cases, this default password is the date-of-birth for that specific user. This is a perfect example of a very unsecure password reset practice.
PortalGuard’s self-service password reset solution provides businesses and organizations with a variety of methods to reset forgotten passwords, including 12 different one-time passcode (OTP) delivery options:
What a portal is and what a secure portal should be. The ins and outs of web portals and the true importance of implementing strong security behind a convenient and usable interface.
This paper takes a deep dive into the importance of identity management in the modern world, the usefulness of Active Directory, and its benefits for environments of any shape and size.