1.  Home
  2. MIDRANGE-L
  3. June 2005

Re: Profile self-service

I'm not sure if this necessarily fits the bill for your issue, but I wrote 
a password reset utility a while back that would allow a manager (*SECADM) 
to reset a disabled user profile.
It will allow them the choice also of resetting the password to default 
which is the same as the user id.
I set it up with object authority so that only those I specified could run 
it and that they could only change a user profile if the user did not have 
any of the following attributes, *ALLOBJ, *SECADM, *SPLCTL or *SERVICE .
Also,  I set it up so it will also send me a message when it's executed.

I can send you a copy if you think it will help.

As for self service, I would think something like this would be too risky 
and/or difficult to set up. It also defeats the purpose for a security 
officer or administrator.

Ron Adams





Mike.Crump@xxxxxxxxxxxxxxxx
Sent by: midrange-l-bounces@xxxxxxxxxxxx
06/02/2005 03:31 PM
Please respond to Midrange Systems Technical Discussion

 
        To:     midrange-l@xxxxxxxxxxxx
        cc: 
        Subject:        Profile self-service


I'm working on two possibilities but was wondering if anyone was familiar
with a software package that:

1.)  Verifies user identity through a series of challenge questions and

2.)  Allows them to change/reset/unlock their account.

NetIQ (ie Pentasafe) has something close with their Vigilent and
PSPasswordManager products but I don't think all the pieces are there.

Triaworks (Powerlock) might have something if TIM PM ever sees the 
sunlight
of GA.....

http://www.triaworks.com/downloads/TIM%20PM%20Datasheet.pdf

Due to constraints beyond my control we will be on a NT 4.0 domain for a
while so a good SSO solution may not be in my near future.  I'm looking at
some other types of reduced SO options but in the mean time need to
investigate this.  Even if I can't do self service my audit/parent company
(ie: those bloodsucking night creatures without a real job) demands will
necessitate that we maintain a challenge question database for my end 
users
so that we can correctly identify John Smith and not be socially
engineered.  So, my drop back position is to have an application that
allows me to setup, manage, and identify end users by challenge questions.



Michael Crump
Manager, Computing Services
Saint-Gobain Containers
1509 S. Macedonia Ave.
Muncie, IN  47302
(765)741-7696
(765)741-7012 f
(800)428-8642

"The probability that we may fail in the struggle ought not to deter us
from the support of a cause we believe to be just"  Abraham Lincoln

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.