PistolStar Boosts Password Security and Enhances Self-Service Experience with Web Set Password Global 7

PistolStar, Inc., a leading password management solutions provider to companies using IBM Lotus technology, today announces Web Set Password Global 7, the latest upgrade of its single sign-on, password synchronization, and self-service password management solution. Web Set Password Global 7 enhances password security and simplifies and secures the authentication process, offering over 36 features not available in Domino R5, 6 and 6.x, including:

- Web single sign-on – Creating convenience and saving login time;
- Browser-based multi-password synchronization (Windows, HTTP, and LDAP passwords, and Notes ID files) – Allowing faster, smoother access;
- Independent and secure self-service password management and reset from any Web browser – Reducing the large amount of Help Desk calls for password resets; and
- Access to Lotus applications from the Lotus Notes clients by authenticating with the Windows or directory password (Microsoft Active Directory, Novell eDirectory and Sun ONE LDAP) – Enabling recovery of the Lotus Notes ID password.

Web Set Password Delivers Noticeable Benefits Plus Immediate Return on Investment Companies implementing Web Set Password reap benefits that are felt across their enterprise — by IT administrators, end-users and senior management.

For administrators, Web Set Password addresses specific problems and challenges, such as enabling secure access to corporate intranets and extranets, and protecting applications and content from illegal usage. Web Set Password also helps IT achieve security "best practices" — functionality such as password quality, history, expiration, 3-strikes and last login — through its ability to define password rules and numerous password preferences.

For end-users, Web Set Password provides self-service functionality that allows them to securely manage and reset their passwords directly from a Web browser, and without Help Desk intervention. The Challenge Question and Answer feature allows end-users to create customized challenge questions to recover passwords without Help Desk assistance and without creating potential security breaches from having the administrator email or phone the password.

For senior management, Web Set Password helps with executing enterprise security initiatives and regulatory compliance by enforcing strong password policies to authenticate end-users who have access to sensitive or confidential information. Web Set Password also meets corporate objectives by enabling end-users and IT to diminish downtime and increase productivity.

Web Set Password provides tremendous cost-savings in two critical ways:
1. By sharply reducing Help Desk calls, enabling IT to allocate fewer resources for managing passwords; and
2. By heading off potential security breaches caused by hackers, poor password quality, and other issues that can arise in the password authentication and management process.

As a result, companies can realize a significant and immediate return on investment (ROI).

Addressing Customers’ Critical Password Security and Management Concerns “Customers tell us their greatest concerns today are protecting corporate data from hackers, providing end-users with secure and simple access to systems, and ensuring regulatory compliance,” said Thomas Hoey, president and CEO, PistolStar, Inc. “With every product upgrade, we respond to customers’ concerns by adding functionality that will further reduce IT’s workload, enhance the self-service password experience for end-users, and address the security and compliance objectives of corporate management.”

Web Set Password’s Top Password Authentication & Management Features
Features that are new with Web Set Password Global 7 include:

- Self-service password reset/recovery for the Notes ID – Eliminating password synchronization of the Notes ID and allowing organizations to end the time-intensive password maintenance and recovery tasks for the Notes ID.
- More simplified password synchronization – Allowing end-users to have only one password to commit to memory, decreasing the likelihood they will write it down and become a target for internal network intruders.
- Forced SSL connection – Ensuring end-user credentials are submitted when an SSL connection is present, but reverting back to normal http:// protocol after logon. Web Set Password’s SSL Support sends end-user’s credentials encrypted to the Domino server, increasing security.
- Extended storage of login information – Allowing more detailed login information to be recorded and sent to the Web Set Password Database
- Prevention of similar password use – Disallowing the use of similar passwords when end-users make password resets
- Confirmation requirement for self-registration – Emailing end-users a link to a confirmation page for self-registration. On this page, end-users are prompted for their email address, which effects the creation of the Person document in the Domino Directory. The Self-Registration Utility enables end-users to create their own user accounts without administrator involvement
- Easier and more organized user interface – Simplifying usability and the self-service experience for the end-user. Web Set Password enables customization of UI screens without Domino Designer.
- Advanced security of Preferences document – Adding two functions: A password-type field for the "LDAP Administrator Password" in the LDAP Synchronization section; and the "Edit Preferences" role, a requirement for editing the Web Set Password Preferences document.

Other top features and their benefits include:

- Password History – Administrators can maintain password history, including a configurable history limit, by setting how many times an end-user must choose a new password before they can reuse an old one. This prevents end-users from repeatedly using the same password.
- Password Strikeout and Strike Event Functionality – Administrators can set number of logon attempts and easily restore password lockout. Strikeouts can be logged to a database, preventing “dictionary” attacks and identifying accounts that have been denied server access.
- Password Quality – Administrators can check password quality on both the client and server sides and configure fully customizable password “strength” rules. Web Set Password offers 11 “strength” rules, while Domino only allows two options for password strength.
- Help Desk Manager – Help Desk personnel with less security clearance and skills to perform tasks normally handled by an administrator can manage end-user passwords without full access to Web Set Password’s configuration data and the Domino Directory.
- Random Password Email Functionality – Administrators can generate random passwords to be automatically emailed to new users. This feature serves as an administrative time-saver as well as a security element because the administrator never sees the password that is emailed.
- Hide Previously Used Passwords – Administrators can stop Internet Explorer Auto Complete from showing a list of previously used password entries via the dropdown menu, preventing internal intruders from accessing passwords.
- Dictionary Search of Unacceptable Passwords – Administrators can specify words that would be easily guessed by potential intruders, preventing end-users from selecting them as passwords.
- Storage of “Set Password” and “Last Login” Date and Time – Administrators can track the date and time a user last set their HTTP password, enabling them to audit and troubleshoot.
- Support for Hub and Spoke Topology in Real Time – Prevents replication conflicts and subsequent Help Desk calls by notifying end-users when their passwords are out of synch. All reads and writes occur on the hub server regardless of where login is executed. All password changes are made in real time.

Web Set Password Global 7 is also available in an abridged version — Web Set Password Deluxe 7 — to better meet the needs of PistolStar’s diverse customer base.

System Requirements
Web Set Password Global 7 is a server-side solution that integrates seamlessly with IBM Lotus technology and doesn’t require end-user setup. Web Set Password supports iSeries, IBM AIX 5.1 and higher, Linux, Sun Solaris UltraSPARC, and Microsoft Windows Server 2003 and Windows NT, 2000, and XP.

About PistolStar, Inc.
PistolStar provides Password Plug-Ins, a comprehensive set of secure password authentication and management solutions that offer tremendous business payback — increased productivity, improved efficiencies and security “best practices” — delivering an immediate return on investment. End-users, IT administrators and corporate management equally benefit from these solutions, experiencing remarkable ease and convenience with managing passwords and gaining secure and trouble-free access to enterprise-wide information and intranets, directories and extranets.

PistolStar’s products integrate with LDAP directories such as Microsoft Active Directory, Sun ONE LDAP, and Novell eDirectory, as well as IBM Lotus technology. PistolStar sells its products to Global 2000 companies and organizations across multiple vertical industries, including automotive, chemicals, consumer products, finance/banking, government, healthcare, manufacturing, advertising and media, communications, pharmaceuticals, and retail.

To learn what hundreds of enterprise customers have already discovered, visit the PistolStar Website at www.pistolstar.com.

Author:  

Email:    

Topic:    

Content: