home
about us
forum
testimonials
sitemap
products
support
pricing
download
 
Site navigation
home > products > self-service-reset-password-management... (you are here)



Self Service Reset Password Management: End users can reset their own password

Previous Topic

Next Topic

Book Contents

Book Index

SSRPM security

Because SSRPM is dealing with very sensitive information, like passwords and user answers, security is a very important issue. This is why SSRPM uses encrypted RPC as a communication protocol between the SSRPM Service, the SSRPM Admin Console and SSRPM User Client Software in the first place. In this way all information sent by SSRPM through your network is encrypted which transforms this information into an unreadable form.

The SSRPM Service stores all user data in an SSRPM database, which includes the user answers. It would be fairly unsafe to store these answers, and that's why (by default) only an MD5 encrypted irreversible hash value of each answer will be stored. This hash value can only be used by SSRPM when checking for answer validation (when a user resets his or her password).

Regarding its own functions, SSRPM can be configured at different security levels, which vary from weak to strong security. This can be very useful when you maintain different security requirements within several OU's in which you can let SSRPM act more secure.

See Also

SSRPM concept

SSRPM architecture

Home | Products | Support | Pricing | Download | Press | About Us | Contact | Sitemap
QUICK LINKS: Mass / Bulk Import Software | Network Monitoring Software | Disk Quota Management
QUICK LINKS: User and Active Directory Management | Active Directory Migration | SSRPM Documentation