Security Basics mailing list archives
RE: Self Service Password Resets
From: "Craig Gee" <craigg () pcinnovation net>
Date: Mon, 6 Apr 2009 16:07:02 -0400
Script logic also has a password reset tool for AD as well as lots of other useful AD monitoring tools Craig Gee PCI Consulting Group Tel: 910.367.1014 Fax: 910.350.3504 This transmission (including attachments, if any) is intended for the use of the individual or entity to which it is addressed and may contain information that is privileged, proprietary, confidential and exempt from disclosure. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of the communication is strictly prohibited. If you have received this communication in error, please notify the sender and delete this transmission immediately. PCI Consulting Group, Wilmington, NC 28405 -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Daniel A. O'Neal Sent: Friday, April 03, 2009 4:57 PM To: Campbell, Josh; 'security-basics () securityfocus com' Subject: RE: Self Service Password Resets Check out ServiceDesk, it sounds like you'd need the enterprise version for what you're wanting, it has a self service password reset feature for AD. Daniel O'Neal IT Manager 1223 Brittmoore Road Houston, TX, 77043 Phone: 713 468-9581 Mobile: 713 397-9519 Fax: 713 468-2270 E-Mail: doneal () kwintl com -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Campbell, Josh Sent: Tuesday, March 31, 2009 9:46 AM To: 'security-basics () securityfocus com' Subject: Self Service Password Resets Hello list, I work for a public university and my manager has asked me to look into a self service password reset solution. We have many employees that do not work on campus or even in the same state (adjunct professors). Currently when they forget their password we have them go through several hoops to get their password reset, including faxing over some ID and having their department head contact us. This was originally designed to be a hassle in hopes that we wouldn't get very many "repeat customers" for forgetting their passwords. Anywho, I was wondering what solutions other people out there are using for this type of thing? Ideally we would like something that a user could go to from their web browser at home or any computer not on our network and they would be forced to answer a series of challenge questions (I know this brings up the point of them forgetting the challenge questions too but let's not even go there). We use MS Active Directory so that would also be a requirement for the solution. Thanks in advance! -Josh C ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute No time or budget for traveling to a training course in this fiscal year? Check out the online information security courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total hands-on training experience. Get the certs you need: CEH, CPT, CEPT, CISA, CISSP, CISM http://www.infosecinstitute.com/request_online_training.html ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------
Current thread:
- Self Service Password Resets Campbell, Josh (Apr 02)
- Re: Self Service Password Resets A K (Apr 03)
- RE: Self Service Password Resets Campbell, Josh (Apr 03)
- RE: Self Service Password Resets Mailvaganam, Hari (Apr 03)
- RE: Self Service Password Resets Siscar, Emerson E. (Apr 07)
- RE: Self Service Password Resets Daniel A. O'Neal (Apr 06)
- RE: Self Service Password Resets Craig Gee (Apr 06)
- RE: Self Service Password Resets JamesCHanlon (Apr 06)
- <Possible follow-ups>
- FW: Self Service Password Resets kevin fielder (Apr 08)
- Re: Self Service Password Resets A K (Apr 03)