Addressing Forgotten Password Challenges with PortalGuard

If you represent an enterprise, non-profit organization or educational institution, users, faculty and administrators at one point in their life have all felt the same pain when it comes down to forgotten passwords. What tend to be more dynamic are the contexts in which those forgotten passwords surfaced in the first place. For instance, if you’re a student at a local community college, resetting your forgotten password may result in you having to call the help desk for a simple reset or an account lockout. If you’re on the administrative side of the fence, a large volume of helpdesk calls isn’t always the only headache you encounter. In many instances, forgotten passwords and password resets lead to security problems.

Self-service password reset (SSPR), regardless of your environment, is a great feature to have when you or your end-users are suffering from what has become commonly known as password fatigue. When it comes down to choosing the right method of SSPR, however, security precautions must be taken into consideration. When organizations get to the point where they become so fed-up with forgotten passwords, they tend to take the easy way out—enabling users to reset their forgotten password to a default standard. In many cases, this default password is the date-of-birth for that specific user. This is a perfect example of a very unsecure password reset practice.

PortalGuard’s self-service password reset solution provides businesses and organizations with a variety of methods to reset forgotten passwords, including 12 different one-time passcode (OTP) delivery options:

  • SMS Text Messaging
  • PortalGuard Password Reset & Mobile Authenticator App
  • Google Authenticator
  • RSA SecurId Hardware & Software Tokens
  • Yubico YubiKey Hardware Tokens
  • HOTP Tokens
  • PortalGuard PassiveKey
  • Printed OTPs
  • PortalGuard Help-Desk Console
  • SIP (Voice) Authentication
  • Email
  • Pattern-Based OTPs