Lieberman lets administrators retrieve their own forgotten passwords

The foundation for security and enterprise management

Not a month goes by it seems, without someone declaring the death of passwords as authentication devices. Everyone decries how easy it is to either guess or hack most passwords – or even coerce them from users as easily as offering a bit of candy in a trade. But suppose the user didn’t actually know what the password was – if they don’t know it, they can’t divulge it. And you can ensure that it’s as strong as necessary to prevent guessing and locked up tight enough to prevent hacking. Lieberman Software thinks it can do all of that.

Now Lieberman doesn’t actually suggest that you use its new Password Vault module for Random Password Manager as a way to keep users in the dark about what their password actually is, but you could certainly do that. In fact, it really isn’t for ordinary users, but for high-powered administrators – those accounts which, if compromised, could lead to network havoc.

Random Password Manager automatically generates unique, complex administrator passwords for each system in the enterprise. The randomization is automated from a single console for all managed systems according to schedules established by the system manager. All actions performed by the product are logged and audited - providing a record of systems managed and passwords changed – a great help when you need to demonstrate compliance with Sarbanes-Oxley, HIPAA, PCI, and other government security mandates.

To continue reading, register here and become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

Not a month goes by it seems, without someone declaring the death of passwords as authentication devices. Everyone decries how easy it is to either guess or hack most passwords – or even coerce them from users as easily as offering a bit of candy in a trade. But suppose the user didn’t actually know what the password was – if they don’t know it, they can’t divulge it. And you can ensure that it’s as strong as necessary to prevent guessing and locked up tight enough to prevent hacking. Lieberman Software thinks it can do all of that.

Now Lieberman doesn’t actually suggest that you use its new Password Vault module for Random Password Manager as a way to keep users in the dark about what their password actually is, but you could certainly do that. In fact, it really isn’t for ordinary users, but for high-powered administrators – those accounts which, if compromised, could lead to network havoc.

Random Password Manager automatically generates unique, complex administrator passwords for each system in the enterprise. The randomization is automated from a single console for all managed systems according to schedules established by the system manager. All actions performed by the product are logged and audited - providing a record of systems managed and passwords changed – a great help when you need to demonstrate compliance with Sarbanes-Oxley, HIPAA, PCI, and other government security mandates.

The Password Vault module enables administrative users who forget their credentials and cannot access a system or application to quickly retrieve their own passwords through the Web interface, without the (often embarrassing for them) need to interact with the help desk.

It would be easy enough to configure Random Password Manager to generate new passwords whenever someone has to use the Password Vault. In fact, you could, theoretically, have the system change passwords after each use, and require each administrator to access the password vault before each authentication. I do believe the auditors would like that!

You can get all the details on Random Password Manager (and Password Vault) at the Lieberman Web site and, which you’re there you can also get a free 10 day evaluation of the product. Give it a try!

Read more about security in Network World's Security section.

Dave Kearns is a consultant and editor of IdM, the Journal of Identity Management.