Common password problems and how Hitachi ID Password Manager solves them
Users have too many passwords.
Synchronize them, so there are fewer to remember and manage.
Users forget their password or trigger a lockout.
Offer Self-service, so users can resolve their own login problems.
Users forget their password from the PC login screen.
Deploy client software to expose self-service at the login screen.
Users forget their password from the PC login screen, while off-site.
Integrate the password reset client with the VPN, so that users can access it from anywhere and so that it can update locally cached passwords after password changes.
PCs are protected with full disk encryption and users sometimes forget their pre-boot password.
Offer self-service unlock from the pre-boot password screen, accessed using a mobile app on user phones or a self-service call to an IVR system.
Users tend to choose simple, static passwords that are easily guessed or read from sticky notes.
Enforce a strong password policy, including regular expiry and no reuse (history).
Users working outside the office are not notified of upcoming password expiration, and get locked out.
Send users e-mail reminders to change their password.
Strong authentication is required, even when users forget their password.
Always offer two-factor authentication, combining browser fingerprint; a "second" factor such as a smart phone app, soft token or PIN sent to the user's phone, with a "primary" factor such as a password or security questions.
Data such as security questions or mobile phone numbers is not available for all users.
Automate the enrollment process, to invite and remind users to enter this data.
Applications, especially SaaS, require strong authentication.
Federate logins from SaaS applications to Password Manager using SAML to increase the value of its 2FA login process.
Users have additional, unmanaged passwords that are hard to remember.
Offer users a personal password vault, so they can securely store additional (non-work or unmanaged) credentials and access them from their PCs and smart phones.
Read More:
- Password Synchronization
Processes to synchronize login passwords across systems and applications. - Self-service Password Reset
Enable users who forgot or locked out their password to resolve their own problem. - Self-service, Anywhere
Enable self-service password reset and unlock even when off-site or pre-boot. - Managed User Enrollment
Automatically invite and remind users to complete their profiles, for example by answering security questions or providing their mobile phone number. - Unlock PC with Full Disk Encryption
Self-service assistance for users who forgot their pre-boot drive encryption password. - Federated Access
Delegate application logins to Hitachi ID Password Manager using SAML 2.0. - Password Policy Enforcement
Require users to choose hard-to-guess passwords, preventing password reuse and forcing regular password changes. - Password Expiration
Detect that passwords are about to expire and invite users to change them with a friendlier web UI. - Personal Password Vault
Enable users to store personal credentials and retrieve them from multiple devices. - Assisted Password Reset
Delegate the right to reset passwords and clear lockouts to help desk staff, managers or others. - Telephone Access to Self-service
Access to self-service through a voice phone call to an automated system. - RSA SecurID Token Management
Self-service PIN resets, clock synchronization and emergency pass-code generation. - Smart Card PIN Reset
Self-service smart card PIN reset, from a web browser or PC login screen. - Download Contacts to Mobile Phone
Search the corporate directory and download contacts to a smart phone, without a public URL. - Reports and Analytics
Analyze user adoption rates, transaction volumes, usage patterns and more.