- - Reset forgotten password
- - Change password, synchronize passwords
- - Manage challenge/response questions
- - Synchronize challenge/response question and answers from external source *Example: check number of last paycheck, final grade in CE 101, etc.
- - Force user to enroll and answer authentication questions
- - Automatic password expiration and notification of pending expiration
- - Help desk reset password
Aegis Identity TridentHE Identity Manager includes Password Management that is designed for rapid deployment, high availability and future scalability. The TridentHE Password Management requires less configuration to integrate as compared to a full identity management implementation and includes an account discovery function to import existing users and link accounts together across systems. The self service and help desk portals are a single place for password management including: change password, forgot password, challenge/response questions and password policy configuration.
For many schools Password Management is a first step to reaping the benefits of a full Identity Management (IDM) solution. The TridentHE Password Management deployment positions these schools perfectly to implement the power of TridentHE Identity Manager, our cost-effective and proven, higher education focused, open standards solution. TridentHE Identity Manager provides robust account provisioning, reconciliation, integrated workflow, delegation administration, auditing, reporting and enterprise-level functionality. All of this additional functionality while capitalizing on the investment in Password Management implementation and configuration.
Password Management Challenges
In today's digital marketplace, user access is everything. The average user accesses between five and fifteen IT systems on a daily basis, and many of those systems have their own password-based authentication system. Users are unlikely to remember fifteen passwords, leading to “manual” efforts to synchronize passwords, write down passwords, or choosing simple, easy to remember passwords. When users forget a password, calls to the help desk can take up to 20 minutes to resolve the issue, resulting in user frustration, increased costs, and lost productivity. Existing password reset mechanisms such as challenge/response questions are subject to increased risk when multiple applications in the organization implement siloed challenge/response with weak questions.
The typical cost of a help desk password reset across all applications is estimated at $30-$70 per support call. Single Sign On can't provide a 100% simplification for users, especially those of stand alone, mobile or unsupported systems. Automating password management can help reduce this cost and the repetitive burden on help desk personnel while meeting security and compliance demands.
TridentHE Password Management Highlights
TridentHE Password Management offers password management functions including central password policies, password change, reset, challenge/response, and help-desk delegation that allows users to reset their own passwords at their convenience from any web browser. It also helps administrators or help desk personnel to easily reset or change passwords and use authentication questions for identity verification.
Aegis Identity Software offers TridentHE Identity Manager's Password Management functionality, stand-alone, for Higher Education organizations that need to solve unique password management challenges while providing a platform that scales to handle future IAM needs such as provisioning, single sign on, federated identify, and compliance.
- Password policy
- Sync passwords using TridentHE connectors
- Durable messages guarantee successful password change
- Password Change
- Password reset
- Challenge/Response questions
- Fine grained audit policy
- Uses rules engine
- Audit events are sent over ESB