Common password problems and how Hitachi ID Password Manager solves them

Users have too many passwords.

Synchronize them, so there are fewer to remember and manage.

Users forget their password or trigger a lockout.

Offer Self-service, so users can resolve their own login problems.

Users forget their password from the PC login screen.

Deploy client software to expose self-service at the login screen.

Users forget their password from the PC login screen, while off-site.

Integrate the password reset client with the VPN, so that users can access it from anywhere and so that it can update locally cached passwords after password changes.

PCs are protected with drive encryption and users sometimes forget their pre-boot password.

Offer self-service unlock from the pre-boot password screen, accessed using a mobile app on user phones or a self-service call to an IVR system.

Users tend to choose simple, static passwords that are easily guessed or read from sticky notes.

Enforce a strong password policy, including regular expiry and no reuse (history).

Users working outside the office are not notified of upcoming password expiration, and get locked out.

Send users e-mail reminders to change their password.

Strong authentication is required, even when users forget their password.

Always offer two-factor authentication, combining browser fingerprint; a "second" factor such as a smart phone app, soft token or PIN sent to the user's phone, with a "primary" factor such as a password or security questions.

Data such as security questions or mobile phone numbers is not available for all users.

Automate the enrollment process, to invite and remind users to enter this data.

Applications, especially SaaS, require strong authentication.

Federate logins from SaaS applications to Password Manager using SAML to increase the value of its 2FA login process.

Users have additional, unmanaged passwords that are hard to remember.

Offer users a personal password vault, so they can securely store additional (non-work or unmanaged) credentials and access them from their PCs and smart phones.

Read More: