[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 213
  • Last Modified:

Does anyone have suggestions on verifying identification for password reset requests

Suggestions on verifying staff identification for remote requests for A.D and appliation password resets
0
LPSHelpdesk
Asked:
LPSHelpdesk
  • 2
1 Solution
 
drewha1969Commented:
Have them send it by signed email?

Assign them a PIN?
0
 
astralcomputingCommented:
Challenge response. But this implies they know something only they and helpdesk knows. Like a hire date.
0
 
drewha1969Commented:
This topic is interesting, so I am not arguing the answer but arent PINs and Challenge responses basically the same thing?  They are both random answers to verify identity.

Plus, if you choose a question that is harder for a random person to find out other than the usual (like birth date, maiden name, etc) it will be just as easy to forget as a PIN.

You could have the employee create their own question, but wouldnt you need a system that allows for the random question to be stored?

So, I think either of those suggestions are probably the least secure, although every bank, cell phone, email company uses these questions...
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now