Skip to main content
Add as a preferred source on Google


SysOp Service Provides Identity Management Self Service in Active Directory Environments

  • By Dian Schaffhauser
  • 03/02/09
##AUTHORSPLIT##<--->

SysOp Tools is launching a new Web-based service that allows users to manage password changes. Password Reset Pro, which works on Windows domains, provides an identify management portal for Active Directory, allowing users to change or reset passwords and unlock accounts.

"As part of maintaining proper ... infrastructure security, most [organizations] enforce regular password changes on employee logon accounts," said Kurt Lewis, CEO. "The problem with this is employee users rarely know when their password will expire and unexpectedly lose access to resources--often at the most inconvenient times. The employee must then call the IT help desk to have their expired password changed or their locked out account unlocked."

The new service, which can be branded by the user organization, provides administrative auditing to track daily Web portal account activities for regulatory compliance needs. In regards to specific PCI compliance requirements, a reason must be entered by the user when unlocking his or her account via the portal, which is then sent to the administrator in real time and also captured in the daily log. The administrator can also see which domain users haven't enrolled in the portal, reset a user portal ID, and ban accounts from using the portal.

The self service Web portal can be deployed on a non-domain DMZ Web server (extranet), and connects to the internal service server (intranet) via an encrypted port. Port connectivity uses an RSA authentication handshake, and communication between Web portal server and internal service server is blowfish-encrypted. All components can be installed on a single server for use in smaller environments.

All sensitive user data resides in Active Directory only, and portal administration is managed through a separate internal secure application. No user account data or passwords are stored on the Web front end portal server, registry, or extra databases.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • Double exposure image of coin stacks on technology financial graph background

    The Budget Cut that Changes Everything in K-12

    ESSER funding, the post-COVID lifeline that enabled many districts to invest in data collection and research, is coming to an end. For districts that relied on those dollars to conduct surveys and gather community feedback, the impact is significant.

  • glowing icons over a stack of books

    Project to Boost Literacy through Data-Guided Practice

    The University of Iowa's Iowa Reading Research Center (IRRC) and the Wyoming Department of Education (WDE) have partnered with Foundations in Learning on literacy support for rural students in grades 3-5.

  • digital file folder with padlock symbol

    FERPA Was Written for File Cabinets, Not Cloud Servers

    Passed in 1974, FERPA was never meant to govern cloud-based platforms, artificial intelligence, or the invisible flow of student data across third-party vendors. Our students deserve better.

  • artificial intelligence on laptop

    OpenAI Plans to Combine AI Products into Desktop 'Superapp'

    OpenAI is reportedly developing a desktop application that would incorporate several of its emerging AI products into a single platform, according to reports, marking the latest step in the company's effort to transform ChatGPT from a standalone chatbot into a broader productivity and automation environment.