- Microsoft Windows chief decries standards grandstanding
- The 5 best, and 5 worst, features of Google Chrome OS
- Federal government using PS3 to crack pedophile passwords
- 10G Ethernet cheat sheet
- Top 10 free Windows tools for IT pros, at a glance
Dave Kearns provides the information you need to evaluate, install and maintain your corporate identity management system.
Not a month goes by it seems, without someone declaring the death of passwords as authentication devices. Everyone decries how easy it is to either guess or hack most passwords – or even coerce them from users as easily as offering a bit of candy in a trade. But suppose the user didn’t actually know what the password was – if they don’t know it, they can’t divulge it. And you can ensure that it’s as strong as necessary to prevent guessing and locked up tight enough to prevent hacking. Lieberman Software thinks it can do all of that.
Now Lieberman doesn’t actually suggest that you use its new Password Vault module for Random Password Manager as a way to keep users in the dark about what their password actually is, but you could certainly do that. In fact, it really isn’t for ordinary users, but for high-powered administrators – those accounts which, if compromised, could lead to network havoc.
Random Password Manager automatically generates unique, complex administrator passwords for each system in the enterprise. The randomization is automated from a single console for all managed systems according to schedules established by the system manager. All actions performed by the product are logged and audited - providing a record of systems managed and passwords changed – a great help when you need to demonstrate compliance with Sarbanes-Oxley, HIPAA, PCI, and other government security mandates.
The Password Vault module enables administrative users who forget their credentials and cannot access a system or application to quickly retrieve their own passwords through the Web interface, without the (often embarrassing for them) need to interact with the help desk.
It would be easy enough to configure Random Password Manager to generate new passwords whenever someone has to use the Password Vault. In fact, you could, theoretically, have the system change passwords after each use, and require each administrator to access the password vault before each authentication. I do believe the auditors would like that!
You can get all the details on Random Password Manager (and Password Vault) at the Lieberman Web site and, which you’re there you can also get a free 10 day evaluation of the product. Give it a try!
Dave Kearns is a consultant and editor of IdM, the Journal of Identity Management.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (4)
RE: Lieberman lets administrators retrieve their own forgotten passwordsBy René Bonte on August 30, 2007, 11:10 amHi Dave, Please have a look at the "Digital Vault" solution from Cyber-Ark. It sounds like the same. Safely store information, like administrative accounts,...
Reply | Read entire comment
Cyber-ArkBy David Kearns on August 30, 2007, 11:43 amIt is similar to Cyber-Ark's product, which I've mentioned a couple of times: * "Identity management and its relationship to information management" * "Vendors...
Reply | Read entire comment
Cyber-Ark Vault is a horrible security productBy Joe Hinckley on August 30, 2007, 7:02 pmI would not recommend the Vault to anyone. Cyber-Ark has one product and they claim it do everything. One day its the vault for Cad/Cam another day its for PCI and...
Reply | Read entire comment
Joe Hinckley How Do You Know?By Ya'akov on May 22, 2008, 3:16 amJoe makes quite a few claims about the product(s)? What I would love to know is where this information came from originally? Is there a web site I could look...
Reply | Read entire comment
View all comments