Features Password Synchronization Web Browser Password Synchronization

Web Browser Password Synchronization

(1)Users can synchronize some or all of their passwords by using a P-Synch® web interface to make routine password changes. The password policy is clearly stated on the screen and enforced immediately. Each system where the user has a login ID is represented by a name and a check box.

Process

Password change and/or synchronization from a web browser works as follows:

1. User: decides to change his password(s) or has been prompted to by e-mail or a "web pop-up" during the login process.

2. User: manually or automatically opens a web browser, navigates through the Intranet to the P-Synch application.

3. P-Synch web server: prompts the user to type his network login ID.

4. User: types his network login ID.

5. P-Synch web server: prompts the user to type his current NOS password.

6. User: types his current password.

7. P-Synch web server: validates the password against the indicated system.

   ... repeat if authentication failed, lockout if too often.

8. P-Synch web server: prompts the user to enter a new password.

9. User: types a new password, selects some or all accounts.

10. P-Synch web server: validates password quality, possibly returns the user to previous step.

11. P-Synch web server: resets the password on selected systems to the new value.

12. P-Synch web server: displays a status page to the user.

13. P-Synch web server: writes a ticket to a call tracking system.

14. P-Synch web server: sends the user a confirmation e-mail.

User Notification

Users do not normally volunteer to change their own passwords. A process for reminding users to periodically change their passwords is described here.

© Hitachi ID Systems, Inc. 2008. All rights reserved.