• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1946
  • Last Modified:

biometric fingerprint reader for windows domain logon

i am looking for information of anyone that knows about fingerprint readers which eliminate the use logon password and enables the user to simply scan fingerprint and grant logon to windows domain (Active Directory). Has anyone ever implemented this security technology or know of any products to achieve this? Thank you
0
musit
Asked:
musit
  • 2
  • 2
1 Solution
 
Ron MalmsteadInformation Services ManagerCommented:
APC has a nice one....works great for storing user/pass for domain logon.

My boss uses it, though he wouldn't buy me one.  (cheap bast@rd !)
Anyway here it is.

http://www.nextag.com/apc-biometric-fingerprint-readers/search-html
0
 
officedogCommented:
Microsoft also do a fingerprint reader and the chances are, there will be better integration into associated systems with this.

HTH
0
 
Rich RumbleSecurity SamuraiCommented:
Yes, I've used them. They are ok. They however do not eliminate the logon password, they simply use the fingerprint of the user as the password. That password is just a weak as a user chosen one from an auditing standpoint. LM passwords are very weak, and with more and more "rainbow table" app's comming out, you might consider using password that are 15 or more chars.
Fingerprint scanners are also easily by-passed see my previous post here: http://www.experts-exchange.com/Security/Q_22009283.html#17648644
The user name must still be entered if it's not present, or a smartcard can be used.

The technology is a convenience  not a security measure. Security is a process not a program.
-rich


0
 
Ron MalmsteadInformation Services ManagerCommented:
The APC reader does both username\password.  Not sure about the MS reader.
0
 
Rich RumbleSecurity SamuraiCommented:
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now