Biometric login/logout
I am trying to find out if there is a way to setup biometrics with AD integration that will allow a user to swipe their finger, log on and launch a program, and when they swipe it again log off the PC.
Biometrics often cause more headaches than they solve, at least in recent years. I've used very expensive equipment and cheap cheap stuff, they are all about the same, hit or miss.
What is the problem you wish to solve, perhaps there is a more reliable way.
>If you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology. ~Bruce Schneier
-rich
What is the problem you wish to solve, perhaps there is a more reliable way.
>If you think technology can solve your security problems, then you don't understand the problems and you don't understand the technology. ~Bruce Schneier
-rich
ASKER
A doctor does not wish to enter his password each time he enters a patient room and would rather a card or fingerprint to signin to the PC and open his program. Comes down to convenience.
Enhanced logon like smart cards or biometric are not usually implemented for convenience but for a purpose.
Security, Compliance Issues, etc...
Coming from a medial I.T background I understand the different health regulations like HIPPA.
Before you implement and enhanced logon which is a global change, I would ask your doctors / security team the following.
1) Is there a security concern they have. Access to patient data, patience can see computer screens doctors are viewing...etc...
2) What other security measure do you have in place: Password policies, audit policies etc..
3) Are you using SSO? Do you have custom application that many not work with the enhanced login process.
Security, Compliance Issues, etc...
Coming from a medial I.T background I understand the different health regulations like HIPPA.
Before you implement and enhanced logon which is a global change, I would ask your doctors / security team the following.
1) Is there a security concern they have. Access to patient data, patience can see computer screens doctors are viewing...etc...
2) What other security measure do you have in place: Password policies, audit policies etc..
3) Are you using SSO? Do you have custom application that many not work with the enhanced login process.
ASKER
The doctor is does not want to have to keep entering his password. He wants to be able to swipe his finger/card a second time to logout/lock the PC.
They dont have SSO implemented.
Notes:
Single doctor practice.
No full-time IT deparment.
Server 2008 domain
They dont have SSO implemented.
Notes:
Single doctor practice.
No full-time IT deparment.
Server 2008 domain
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Richrumble you make a very good point!!!
Security is a bummer that way :) But it's what I do, and I'm always looking for new things to try, you should too!
-rich
-rich
http://www.windowsecurity.com/articles-tutorials/windows_server_2008_security/Managing-Biometrics-Windows-Server-2008-R2.html