What is a good password and why do you need one?

Would you leave the door to your house unlocked if you weren’t home? Would you leave the keys in your car if you weren’t in it? I assume the answer to both these questions are “no”. Why would you want to leave your personal property unattended, when is there a chance something might be stolen? Similar questions can be asked regarding password management. How complex are your passwords? Do you feel as comfortable storing your personal and business information on your computer, as you do leaving your home locked and protected?

It seems like every other day there are new threats and reports of people being hacked and having their personal information taken. Having a secure and complex password is a way to combat this issue. An example of a strong password is one that has capital letters, numbers and symbols. You should have different passwords for various systems and applications. Always make sure the passwords are unique, lengthy and not easily guessed.  Being able to reset your password on your own, with the use of secondary authentication methods is another way to implement extra measures to ensure the safety of your accounts.

Businesses are particularly vulnerable to employees and outside parties mishandling passwords. Private company information is stored throughout the organization on various files, systems and shares, so having a strong password management policy is especially important. Implementing password complexity rules and enabling end-users to reset their own passwords, is one way to enhance security measures. 

Tools4ever offers a Self-Service Password Reset Solution called, SSRPM. SSRPM allows end-users to reset their own passwords based on a number of predefined security questions chosen by the organization. The employee will enroll in the product and answer a number of questions with personal information, which only they will know. When the time comes to reset their password, they will either go to the SSRPM Web Interface or click on the “forgot my password” link on the standard Windows logon screen. Once they initiate a reset, their questions will appear and they will only be able to reset if they answer their security questions correctly. By utiziling this method, the risk of fraudulent requests for password resets are mitigated and identity of the employee is verified.

Another way to enhance security is requiring end-users to enter a PIN Code in addition to their challenge questions upon reset. When the user goes to reset a password, a PIN Code will be sent either by text message or by personal email, this code will need to be entered accurately in order for the password reset to occur. By entering both the answers to the personal challenge questions and entering the PIN code, a company can be confident that password resets are only occurring by the users authorized to do so. This additional layer of security is known as two-factor authentication.

Standardized security measures are of the utmost important when trying to protect private information. To ensure that this data is secure, put a solution in place that will make it difficult for outside threats to access it. Remember the stronger the password, the stronger the security.      

Single Sign-On (SSO)- the greatest thing to happen to employees since designated parking spots!

Like many other professionals, I used to have a hard time remembering all the passwords to every system I utilized on a daily basis. Trying to recall the various requirements for each password, for each system, can be a cruel and daunting task. My biggest fear is forgetting said passwords, and as a result, having to spend an hour or more on the phone with the IT help desk, just trying to get them reset. That is an hour that could be spent standing by the water cooler, discussing last night’s Game of Thrones episode, or if my boss is reading this, calling clients.

Read more

Password management woes- “i have to call the helpdesk again?!?!”....

How many times over the course of your career have you forgotten the password that logs you in to your computer? It’s safe to assume that some days start out the same; drinking a cup of coffee in front of the computer screen wondering if an “ !” or a “ $” was put at the end of your password. Usually after a couple of failed attempts, a call to the IT help desk is required to have the password reset. This process can take anywhere from 20 minutes to an hour depending on how busy they are. I’m sure we can all agree that it is a frustrating task.

Read more

Dealing with the password issues which security measures produce

Customer and employee privacy is vital within every organization. However, some could argue that in the financial industry, security is of the up most importance. Because of this, government rules and regulations are put in place to protect personal information and determine who can gain access to accounts.

Read more

Need to reset your password after you have left the office?

What would you do if you got home from a long day at the office and you realize that you have forgotten to send an important presentation to your boss? It is saved on your laptop, and you have it with you, so crisis adverted, right? Wrong! You can’t remember your password and the help desk is closed. What do you do?

Read more

Do Identity and Access Management (IAM) solutions make sense for both large and small businesses?

In many cases, organizations have fairly large IT infrastructures, which can make it difficult to stay in compliance with numerous regulations. Businesses are required to keep a record of who did what and when. Without an Identity and Access Management (IAM) solution, this task can become extremely difficult and time consuming.

Read more