Solved

Self service password reset

Posted on 2010-11-08
9
2,627 Views
Last Modified: 2013-04-22

We are currently looking at options for self service password resets.    We have a mixed environment {macs, linux ,windows, etc) and use AD 2008R2 for authentication.
   Our current product does a decent job of password resets, but is quite expensive to license.    We will have over 70-100,000 users that will use this.

Some of the features that are needed.
     -User should be able to reset password from any web browser.  If they do not know their password, they should be able to reset their password via challenge/response
    -if the product is able to send verification codes via sms that would be a bonus.
    -ad attribute updates would also be a bonus
    -We also need a web based helpdesk feature.  Meaning, our helpdesk staff should be able to reset passwords of accounts.  A number of staff members use machines on non windows machines
    -decent logging/reporting/collection of all events.

I looked at a number of products but have not found many that fit this criteria {that didn't cost (150k)   It would be preferred for this to run under IIS, but other options could work as well.

Does anyone know of any options that meet this list?  {Gee..I'm not asking too much :) }     Any information would be appreciated.
 

0
Comment
Question by:fertigj
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 27

Assisted Solution

by:KenMcF
KenMcF earned 250 total points
ID: 34089671
Take a look at rDirectory, the next version will support multiple browsers. Right now it only supports IE.
http://www.namescape.com/Products/rDirectory.aspx

Also Take a look at Courion

http://www.courion.com/products/PasswordCourier.html
0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 250 total points
ID: 34089685
Microsoft makes Forefront Identity manager which can provide this feature and more.   Video here   http://technet.microsoft.com/en-us/edge/self-service-password-reset-with-fim-demo.aspx

Namescape also makes a product (haven't tested it myself).  They have a video up also

http://www.youtube.com/watch?v=TxBMSUMnKjQ
http://www.namescape.com/Solutions/SolutionsPasswordManagement.aspx


Thanks
Mike
0
 
LVL 1

Author Comment

by:fertigj
ID: 34089725
It is really important that all browsers {or ie/firefox/opera/safari} are supported.   That said the product does look interesting.   I'll have to keep an eye on this.    

I have also read decent reviews on Courion,  my only issue is the pricepoint.   A lot of decent products are pricing themselves out of consideration.     It is hard to justify a large expense for a single service  {even something as important as this}
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 27

Expert Comment

by:KenMcF
ID: 34089862
I was incorrect about the browser support with namscape. It is their rDirectory product that only supports IE.

Cross-Browser Support
End-users can use Internet Explorer, Safari, or FireFox to access myPasswordto reset their Windows password, accounts, create Password Reset Profiles, or change their passwords.

http://www.namescape.com/Products/myPasswordSelfServiceReset/Features.aspx
0
 
LVL 1

Author Comment

by:fertigj
ID: 34089880
I'll have to take a closer look at this product.   This does look interesting.
0
 
LVL 24

Expert Comment

by:Awinish
ID: 34091437
0
 
LVL 1

Author Closing Comment

by:fertigj
ID: 34183473
Was hoping for open source/free..but can't fault the answers.  Just the question :)
0
 
LVL 5

Expert Comment

by:FirstSentinel
ID: 34634626
Open Source you say?.......

HERE IT IS!!!!!  

   VA TEch Self Service
0
 
LVL 22

Expert Comment

by:Joseph Moody
ID: 39102185
We were looking for a free way of doing this as well. Our final solution used PowerShell to provide a password reset service.

It isn't as pretty as a GUI based option but our users can now reset their passwords by texting from their cell.

http://deployhappiness.com/reset-user-passwords-with-ad-self-service-portal/
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question