Password Manager is an integrated solution for managing user credentials, across multiple systems and applications. Organizations depend on Password Manager to simplify the management of those credentials for users, to reduce IT support cost and to improve the security of login processes.
Password Manager includes password synchronization, self-service password reset, enterprise single sign-on, PIN resets for tokens and smart cards, enrollment of security questions and biometrics and emergency recovery of full disk encryption keys.
Password Manager reduces the cost of password management using:
Password Manager strengthens security by providing:
To find out more about Password Manager, visit http://Hitachi-ID.com/password-manager.
Password Manager helps users to maintain a single password across every system, as follows:
Users normally receive an e-mail confirmation after password synchronization is complete, with either method.
In the event that a user forgets any of their passwords, the user can access Password Manager from a web browser (click on Password Manager on the Intranet or Extranet web portal), from their workstation login screen (type help for the login ID, leave the password field blank and press Enter), using a GINA extension DLL or service (new user interface element added to the workstation login screen), using a Windows Vista/7/8 Credential Provider (another UI extension to the login screen) or by calling the help desk phone number and dialing the menu option for a password problem (IVR).
Regardless of how the user accessed Password Manager (web, login prompt, phone), they must sign in, typically by typing their network login ID. The user will then be authenticated, typically by answering a series of security questions. Once the user has been authenticated they can select a new password for themselves. The new password will be applied to some or all of their login IDs in the next few seconds.
The user will receive an e-mail confirmation after the password reset is complete.
In some environments, users have to register with Password Manager to provide data such as security questions or to attach login IDs on systems with non-standard naming conventions to their profiles.
Password Manager manages registration automatically:
This process is fully automated and unattended. It is secure, since sensitive information, such as passwords or PINs, is never transmitted over an insecure channel (e-mail).
This process is configured to minimize load on the help desk and e-mail delivery system (maximum registration invitations per day).
This process is configured to minimize nuisance to individual users, by ensuring that reminders to register are not too frequent.
This process is effective and reliable, since users are reminded to register until they comply.