Better Together Redux

Yesterday, I posted about some of the work I've been doing around "better together" scenarios. Not to be left out, one of my product managers promptly pointed out the awesome work he'd accomplished integrating Quest Password Manager and Defender. Here's the scenario:

• Quest Password Manager enables end-users to self-service reset their Active Directory password.
• The self-service is the typical self-service that is driven off your answers to a series of questions such as "What's your hat size?", "What's your favorite cocktail?", "What is the airspeed velocity of an unladen swallow?", etc.
• Many companies have come to the conclusion that these questions are generally subject to social engineering attacks. After all, it isn't that hard to figure out the airspeed velocity of an unladen swallow with a bit of Google detective work.
• With the acquisition of PassGo's Defender we were able to add in the capability for an end-user to reset their Active Directory password based on their response to a one-time password challenge either on its own or in combination with the end-user's questions and answers.

The basic result is a much more secure way of enabling end-users to reset their passwords.


Better together!



Technorati Tags:
Quest Software, QSFT, Defender, PassGo, privileged account management, identity management, Linux, Unix