Solved

biometric fingerprint reader for windows domain logon

Posted on 2006-10-19
7
1,932 Views
Last Modified: 2007-12-19
i am looking for information of anyone that knows about fingerprint readers which eliminate the use logon password and enables the user to simply scan fingerprint and grant logon to windows domain (Active Directory). Has anyone ever implemented this security technology or know of any products to achieve this? Thank you
0
Comment
Question by:musit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
7 Comments
 
LVL 25

Expert Comment

by:Ron Malmstead
ID: 17773348
APC has a nice one....works great for storing user/pass for domain logon.

My boss uses it, though he wouldn't buy me one.  (cheap bast@rd !)
Anyway here it is.

http://www.nextag.com/apc-biometric-fingerprint-readers/search-html
0
 

Expert Comment

by:officedog
ID: 17774630
Microsoft also do a fingerprint reader and the chances are, there will be better integration into associated systems with this.

HTH
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 17776959
Yes, I've used them. They are ok. They however do not eliminate the logon password, they simply use the fingerprint of the user as the password. That password is just a weak as a user chosen one from an auditing standpoint. LM passwords are very weak, and with more and more "rainbow table" app's comming out, you might consider using password that are 15 or more chars.
Fingerprint scanners are also easily by-passed see my previous post here: http://www.experts-exchange.com/Security/Q_22009283.html#17648644
The user name must still be entered if it's not present, or a smartcard can be used.

The technology is a convenience  not a security measure. Security is a process not a program.
-rich


0
 
LVL 25

Expert Comment

by:Ron Malmstead
ID: 17820772
The APC reader does both username\password.  Not sure about the MS reader.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 17821192
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Course of the Month3 days, 19 hours left to enroll

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question