Self Service Reset Password Management

Self Service Reset Password Management with GINA integration

On average, 25% of the calls to a helpdesk are estimated to be password-related, such as resetting forgotten passwords.  The IT staff is burdened with resolving these calls, resulting in an increased administrative load for the IT department.  At the same time, the end-user also wastes time and is less productive, because he or she is locked out of the network temporarily.

This results in frustration for both the end-user and the system administrator or helpdesk.  Thanks to SSRPM from Tools4ever, the IT department is less burdened with these duties and can focus on resolving more critical calls.

Self Service Password Management.  Increase Security & Recover Lost Time

Saves time and money

Deploying SSRPM enhances the efficiency of the helpdesk and because end-users can modify their own passwords directly, they remain productive.  It also reduces the number of calls to the helpdesk to near zero.  SSRPM has been proven to reduce the number of helpdesk calls regarding reset password by as much as 90%.

Improved service level

End-users can reset their passwords easily and at any time (24/7).  Remote users don’t have to wait for the helpdesk to release the accounts.  With SSRPM, the helpdesk service window for resetting passwords is simply increased from office hours to 24/7.

Better security

By posing the predefined and pre-answered questions to establish the identity of the end-user, the risk of fraudulent requests for password resetting is avoided.  This is often a major improvement over the current situation where an end-user can call the helpdesk and a minimal methodology of checking is carried out.  Is the caller who he says he is?

Fulfils compliance

Because all the actions of SSRPM are recorded in an audit log, standard management reports can be generated with SSRPM, particularly for organisations having to work with SOX, HIPAA, SEC and GLBA requirements.

Out-of-the-box solution

SSRPM installation is possible in less than two hours.

24/7 availability

End-users can reset their password 24 hours a day, including weekends and holidays.  This is in contrast to the availability of the IT helpdesk.

Own password policy

The system administrator has total control over the password policy.  For example a complex composition of the password with at least 7 characters or at least 1 uppercase letter.  Various password security levels can be configured, from weak to strong.

Advanced Authentication

SSRPM’s Advanced Authentication module can be used to expand the set of personal verification questions with an additional layer of security in the form of two-factor authentication.  Two-factor authentication is achieved by expanding the set of questions (knowledge) with a code sent using a text message (physical identification token).  Besides texting codes, it is possible to mail the code to the user’s personal email address.  The texting and email options can be set for each user group.

Questions configuration

System administrators can modify the number and content of the test questions themselves.  This also applies to the number of attempts the end-user may make to enter the details correctly.

Reversible encryption

It is possible to configure SSRPM to encrypt the answers instead of creating a hash.  The advantage of using reversible encryption is that it is possible to use the Helpdesk Caller Identification web interface.

Helpdesk Caller Identification web interface

This web interface is intended for helping the helpdesk authenticate users, without the user telling the helpdesk their complete answers to the questions.

Secure interface

End-users are authenticated on the basis of a number of predefined questions.  Administrators can decide themselves how many incorrect answers can be entered before someone is blocked from using the application.

Login possible anywhere

It’s possible to reset passwords from any workstation.  SSRPM integrates the ‘Forgot My Password button’ in the organisation’s logon window or a web portal.

Multi-platform support

SSRPM supports Windows, Unix, Mainframe, Novell, Lotus Notes, AS/400, Citrix and a variety of web applications like OWA and NFuse.

Clear and adaptable design

The SSRPM Admin Console offers system administrators an overview of all relevant information, such as end-users who have not logged on, an overview of the number of incorrect answers for a new password, and an overview of the current SSRPM status.  The GUI, configuration and reporting abilities can be tailored to meet your organisational requirements.