Get Increased Control for Identity Verification with Password Reset Server’s Latest Upgrade

15 04 2014

Password Reset Server’s most recent upgrade to 3.2 gives greater control over the identity verification process by allowing administrators to define which questions users must answer correctly.

Now, verification questions can be marked as Optional, Required or Grouped.

Required Questions

Administrators can now mark specific questions as Required, meaning that users will have to provide correct answers to required questions during enrollment and will have to answer the questions correctly during a password reset.

Grouped Questions

Questions can also be marked as Grouped. This will display all questions in the group during a password reset, but the user only has to answer one of the grouped questions correctly. This option is especially useful for companies requiring multifactor authentication, as it gives users the option to choose the multifactor method of communication works best for them at the time.

Here’s how this can work: Set three multifactor questions Grouped: email, SMS and phone. During enrollment, the user will be required to enter their email, SMS and phone numbers. Then during a password rest, the user can choose which multifactor question to answer correctly, so if they are only able to access email at the time, they can answer the email verification question correctly.

Password Reset Server Enrollment

 Security Policy question configuration: Three multifactor questions are marked as grouped (required 1 correct answer out of 3), an image question is required, and the user will choose two of the optional questions to answer during enrollment.

Password Reset Server Security Questions

Questions during enrollment: Required questions are marked with an exclamation point (!) and optional questions can be selected from the drop-down menus.

For a chance to see the new features in action, join us for our webinar this Thursday, April 17 at 11:30 a.m. EDT!





Sneak Peek: New Secret Server features only at RSA Conference 2014

20 02 2014

2014 marks Thycotic’s 5th year exhibiting at the RSA cybersecurity conference. RSA is one of the largest gatherings of IT security professionals and analysts in North America. This year, the conference takes place February 24-28th 2014 at the Moscone Center.

RSA Conference 2014

Thycotic to unveil new Secret Server features

We’re excited to demonstrate not-yet-published Secret Server features before they’re officially released at booth 415 during RSA expo hours. Our team will also give demos of our other IT products and are available to answer any questions you have on our products or password management best practices. Product Manager Ben Yoder and CEO Jonathan Cogley will be there, as well as many more of our great team. Look for our 20X20 black and green booth, you can’t miss us!

What to expect from RSA

Informations sessions cover a variety of security hot topics: hackers and threats, governance, risk and compliance, cryptography, data privacy and more. IT security professionals come eager to discover the latest in security technology, debate fiery issues and mingle with the best in breed vendors and industry experts. Oh, and don’t forget the rocking vendor parties that pack the evenings; complete with food, drinks and entertainment of all kinds amidst the backdrop of a lively San Francisco nightlife.

Awesome keynote lineup

RSA 2014 boasts an impressive speaker lineup worth checking out, including Nawaf Bitar of Juniper Networks, Art Gilliland of HP, James Comey of the FBI and a special closing keynote appearance by Stephen Colbert guaranteed to bring some hilarity to the mix.

Thinking about attending? Register for RSA 2014 here.

See you there!

 





Password Reset Server: Remind Your Users to Enroll With a Logon Script

27 11 2013

Being a self-service password reset tool, Password Reset Server needs its end-users to enroll in the product by answering security questions. This can become a challenge if you want your users to begin changing their password immediately or if you are having difficulty getting users to respond to the enrollment reminders. Password Reset Server offers a couple solutions to this challenge.

First, Password Reset Server has recently released Automatic Enrollment.  Automatic Enrollment will sync users’ Active Directory attributes, such as email, phone, address, etc. and allow those answers to be used as the end-user’s security questions. This works well if your user’s profile in Active Directory is accurate and up to date, and if you are using text, email or SMS based questions.

Second, for those of you who want security questions about more than what is listed in AD attributes, you can use a Logon Script to get your users to enroll. The Logon Script can be used for organizations that also want to include more personal challenge questions, such as a user’s “Favorite Food” and “Childhood Friend.”

A Logon Script is a piece of code, usually either a batch file or Visual Basic/PowerShell script, which is deployed using Group Policy and runs as a user logs into their machine. Password Reset Server has an accessible API that can be used to create personalized reminders for those users that have not yet enrolled into Password Reset Server, or completed their personal security questions.

Setting up a Logon Script is simple! First, we created the script to call the Password Reset Server Web Services <http://support.thycotic.com/KB/a382/calling-web-services-password-reset-server-with-powershell.aspx>, and then we created a script to be performed on the user’s logon. For example, we used the following PowerShell script that will check the enrollment status of a user, and direct them to Password Reset Server if they are not yet enrolled.  If they have enrolled, it will simply stop running.

$url = ‘http://www.MyPasswordResetServer.com/webservices/webservice.asmx&#8217;

$proxy = New-WebServiceProxy -uri $url -UseDefaultCredential

$enrolled=$proxy.UserEnrolled($env:USERDOMAIN,$env:USERNAME)

IF ($enrolled -ne $true)

{

Start -Path “http://www.MyPasswordResetServer.com/PasswordResetServer&#8221;

}

ELSE

{

Exit

}

After creating the script, you will want to assign the script in the domain Group Policy. Then, select the objects that you want affected by the Logon Script, edit the policy and navigate to User Configuration>Polices> Windows Settings>Scripts. Right click and select Properties.  After this step, you will want to click the PowerShell Scripts tab inside Group Policy Editor and add your newly created script. Next, you can select the GPO run policy to have this script run first or last after logon. When this is done, click Apply and Ok, and you have successfully created a logon script that will prompt users to enroll in Password Reset Server if they have not already. It’s that easy!





Reduce Help Desk Calls with Password Reset Server

12 11 2013

Any help desk or system administrator will tell you that their company spends much more time resetting end-user passwords then they should. Constant calls to the help desk for this simple yet urgent problem eat a lot IT’s time that could be spent working on other projects and support issues.

To help alleviate this problem, Thycotic Software developed Password Reset Server. Password Reset Server is a self-service password reset tool for Active Directory end-users. It makes the password reset process very simple and straightforward, with a Windows login integration for in-network employees and a web portal for those off-site.

Some of the main features of Password Reset Server include:

Self-Service Password Resets

End-users are put in charge of changing their own passwords. With secure identification, I.T. no longer has to be directly involved.

Automatic Enrollment

IT teams can bulk-enroll all employees. That way, users can simply log into the site and answer questions based on Active Directory attributes when they need to change their passwords.

Multi-factor Questions

Add security to ensure the correct person is resetting their password with multi-factor authentication, including verification via phone, email and SMS.

By providing a secure method for end-users to reset their Active Directory passwords, Password Reset Server helps reduce support demands on help desk staff and allows them to focus on other tasks while giving end-users a quick and easy interface for changing their own passwords.

Learn more about Password Reset Server at our upcoming webinar on Thursday, November 14, at 11:30am EST. We hope you’ll join us!

Register here for the Password Reset Server webinar





Don’t miss our monthly webinars!

5 11 2013

Every month, Thycotic hosts a webinar to explore new features, technical integrations and best practices. Last week we discussed a fairly new feature added to Secret Server version 8.3, which has expanded the list of web password changers. Secret Server can now change passwords on Windows Live, Google and Amazon accounts. This means you can now manage your Office 365, Google Apps and Amazon Web Services through Secret Server. These sites are just the beginning of web password changing for Secret Server. If you missed the live webinar, you can watch a recorded version here.

We have several upcoming webinars, including a feature deep-dive and tech integration case study.

Sign up now to get them on your calendar!

Learn how America First Increased Security through Authenticated QualysGuard Scanning with Secret Server

November 5, 2013 at 1:00 pm EST.

Do you have a full understanding of your network security, from both external and internal threats? Performing authenticated scanning for internal threats while keeping credentials locked-down on premises can greatly mitigate security risk. Find out how America First, a national credit union, implemented secure authenticated scans with Secret Server.

Register here for the Qualys Authenticated Scanning webinar

Thycotic Software Introduces- Password Reset Server

November 14, 2013 at 11:30 am EST.

Learn how Thycotic can help solve your end-user AD password rests. Password Reset Server is an AD self-service reset tool that helps reduce your help desk calls.

Register here for the Password Reset Server webinar

For the latest security news and Thycotic product updates, follow us on LinkedIn!





Meet Thycotic in San Francisco at RSA 2012!

7 02 2012

Will you be in San Francisco for RSA Conference 2012?  We’ll be there too!  Thycotic Software is excited to demonstrate our flagship products Secret Server and Password Reset Server live.  Please join us at the Moscone Center February 27th – March 2 and learn about the newest features.  Thycotic’s booth (#2550) is located here:

Thycotic Software's Booth #2550 at RSA Conference 2012

Thycotic Software's Booth #2550 at RSA Conference 2012

Secret Server is a privileged password management solution, designed to securely control access to critical enterprise passwords in one centralized, web-based repository.  SS is encrypted, FIPS-compliant and helps organizations to reach their Sarbanes-Oxley or PCI DSS goals.

Password Reset Server is an end-user password reset tool that combines ease-of-use with advanced security, and meets Section 508 compliance standards. PRS is designed to reduce Help Desk calls and let employees reset their own forgotten passwords through a series of secure questions and images, and even telephone verification.

See you February 27th!





Join Our New Reseller Program

27 09 2010

Over the past few months the Thycotic team has been working on creating a structured Value Added Reseller Partner Program. After a little help from some experts and a lot of hard work, we are proud to report our Reseller Partner Program is ready! We have included many useful tools to help our Partners around the world bring Secret Server password management software to their customers.

Here are a few examples of what you’ll get in our Reseller Partner Program:

  • Sales Presentations
  • Typical use case scenarios
  • Detailed target market information
  • Marketing campaign tools
  • Product FAQs
  • Recorded demos
  • Installation and configuration instructions
  • Accompanied professional services examples
  • Objection Handling

Now we need Partners passionate about Secret Server! So what’s in it for you? How about local leads and a generous commission structure? We have thought of everything and what we missed we hope to learn from you; feedback is welcome. The Thycotic team is confident in our products and wants to see our Partners achieve the same success with their customers as we have seen with ours.

If you are ready to get the ball rolling, please complete our Partner Application Form

Please contact us with any questions.





Thycotic brings Password Management to TechEd Australia 2010

8 07 2010

Thycotic brings Password Management to TechEd Australia 2010

Thycotic will be at Gold Coast, Australia next month exhibiting at TechEd Australia for the third year in a row. Stop by our booth and learn about how Secret Server integrates with RADIUS in version 7.0 .

Are you responsible for end-user passwords? Ask to see a demo of self-service password reset tool,Password Reset Server.

Come visit us to talk about password management or information security.

See you there!

Thycotic Booth








Follow

Get every new post delivered to your Inbox.

Join 30 other followers