Web browser password synchronization with Hitachi ID Password Manager
(1)Users can change some or all of their passwords using a Hitachi ID Password Manager (formerly P-Synch) web interface. The password policy is clearly explained on-screen and enforced interactively.
Using an interactive web page to change passwords has educational benefits but requires user awareness and cooperation.
Process
Password change and/or synchronization from a web browser works as follows:
- User: decides to change his password(s) or has been prompted
to by e-mail or a "web pop-up" during the login process.
- User: manually or automatically opens a web browser, navigates
through the Intranet to the Password Manager application.
- Password Manager web server: prompts the user to type his network login ID.
- User: types his network login ID.
- Password Manager web server: prompts the user to type his current NOS password.
- User: types his current password.
- Password Manager web server: validates the password against the
indicated system.
... repeat if authentication failed, lockout if too often.
- Password Manager web server: prompts the user to enter a new password.
- User: types a new password, selects some or all accounts.
- Password Manager web server: validates password quality, possibly
returns the user to previous step.
- Password Manager web server: resets the password on selected systems to the
new value.
- Password Manager web server: displays a status page to the user.
- Password Manager web server: creates a ticket on an incident management system.
- Password Manager web server: sends the user a confirmation e-mail.
User Notification
Users do not normally volunteer to change their own passwords. A process for reminding users to periodically change their passwords is described here.
