The process of password synchronization correlates the passwords for multiple user accounts, enabling users to authenticate to all systems leveraging a single password. Since only one password needs to be remembered, overall system security can now be increased by enforcing stronger password policies such as more frequent expiration.
Password Changes Flow to Multiple Directories in Real-time
PortalGuard offers a comprehensive password synchronization solution which supports Microsoft Active Directory, Novell eDirectory, IBM System i, any LDAP v3-compliant directory and custom SQL user tables, plus self-service password management allowing users to easily manage passwords for multiple systems. When performing password changes across all systems, PortalGuard passes the changes down to all linked accounts in real-time.
Active Directory (AD) Password Filter Maintains Policies
PortalGuard has an optional component for further Active Directory integration. This Active Directory Password Filter can prevent users from setting domain passwords natively through the Ctrl-Alt-Del Windows Password Change process that do not comply with custom rules that AD itself cannot enforce. This ensures that what may be the most common interface for changing user passwords will comply with the necessary rules for password synchronization to occur seamlessly.
Single Consistent User Interface
A common concern across organizations is that users have too many passwords to manage, each with a separate management interface to become familiar with. This creates user frustration and increased costs around Help Desk and IT support. Enterprise single sign-on (SSO) is looked at as a solution but for many organizations it proves too costly and many encounter internal resistance due to security concerns.
PortalGuard addresses these challenges by providing a cost-effective, flexible approach to server-based password synchronization plus self-service password reset allowing users to easily manage passwords for multiple systems from a single, consistent interface. Users can now be allowed to reset forgotten passwords from one place, including the Windows logon screen, corporate web portal login or a stand-alone website.