About Hitachi ID Password Manager

Hitachi ID Password Manager is an integrated solution for managing user credentials, across multiple systems and applications. Organizations depend on Password Manager to simplify the management of those credentials for users, to reduce IT support cost and to improve the security of login processes.

Password Manager includes password synchronization, self-service password reset, enterprise single sign-on, PIN resets for tokens and smart cards, enrollment of security questions and biometrics and emergency recovery of full disk encryption keys.

Business Challenge

Users have too many passwords. A typical user in a large organization may have 10 to 20 passwords used to sign into different systems and applications. Users respond to this complexity by:

  • Avoiding password changes,
  • choosing simple passwords,
  • writing down their passwords or
  • forgetting passwords.

This creates real business problems:

  • Inconvenience for users,
  • security compromises and
  • high help desk call volumes.

Users may also have smart cards or tokens that users unlock with a PIN (which they will occasionally forget). They may also use security questions in some contexts or a password to unlock an encrypted filesystem on their PC. Some users use biometrics, such as finger prints, voice prints or face recognition to sign into systems or applications. Users may experience login problems with any of these credentials.

Solution and Features

Password Manager, a component of the Hitachi ID Identity and Access Management Suite, is a system that helps users to better manage their own credentials. It includes:

  • Password synchronization and enterprise single sign-on.
  • Self-service password and PIN reset.
  • Self-service unlock of encrypted filesystems.
  • Managed enrollment of security questions, mobile phone numbers, personal e-mail addresses and biometrics.

Password Manager includes connectors to manage PINs, passwords and encryption keys on over 120 kinds of systems and applications.

These capabilities are available via a full-screen or mobile web browser, from an off-site laptop or smart phone, from the login screen of a corporate PC or via a phone call.