Server-based Password Synchronization

by Rob Bellefeuille 0 Comments

It is a growing concern these days that many organizations end-users have too many passwords to remember. Often there are different requirements and credentials for each login and is likely to create confusion resulting in lockouts and an increased volume of Help Desk calls.  One solution for this is single sign-on (SSO), this may seem like a simple solution, however this can incur internal resistance due to overall security concerns. There are other options that provide the same functionalities and are easier to integrate than SSO.

Password Synchronization takes the principles of SSO one step further and correlates the passwords for multiple user accounts on your server, enabling users to authenticate to all systems by leveraging a single password. Once this is put in place the end-user is only required to remember only one password giving you the ability to implement stronger password requirements and more frequent expiration of the password, thus increasing your security.

Identifying password complexity rules for all systems is critical to ensuring that this process will properly integrate into your system. After going through this process the next step is to typically, change the password rules on one or more of your systems so that all systems then reach a common set that can be enforced by each.  Next, the typical response to this issue may be to change the password rules on one or more systems to reach a common set that can be enforced for each.

By enforcing a consistent set of password rules, which are always enforced when a password is changed or reset through it, allows user to just use one password. When new passwords are created this will allow users to enter just one password, and they will not run into issues due to conflicting password policies.

Password Synchronizations offers the ability to link the primary account of the users on multiple systems or directories. When a user changes, resets or has an account unlock of a password, through PortalGuard the password will be changed in real-time all of the linked systems. When configuring in your environment PortalGuard allows you to make account linking so it can be enforced or made optional, these include website login and Windows desktop login.

Tags: Authentication Security, #infosec, #ITSecurity, #passwords, PortalGuard, Password Security, User Authentication