IBM i Password Self Service

Passwords are the most common form of authentication used to control access to information. Businesses use passwords because they are a well-known, convenient, and inexpensive authentication mechanism. Yet, the problem with passwords are that they are only as strong as their human creators.

Organizations may have hundreds or thousands of password-protected accounts and only one needs to be compromised to create significant data vulerability.

To mitigate this vulnerability, Security Officers need to enforce strict guidelines on users when creating passwords or resetting passwords when they are forgotten. Security Officers also need to audit password activity with alerts and automated system responses to any suspicious activity.

Organizations most often depend on their helpdesk professionals to assist and oversee routine password maintenance. Many organizations that have implemented procedures to streamline and automate password management still require helpdesk teams to manually respond to each request in some capacity, whether it’s answering a call to receive the request or closing a ticket. This is a costly misuse of the value helpdesk professionals bring to an organization.

Enforcive’s Password Self-Service (PSS) streamlines password management into an autonomous process that enables end-users of IBM i and Windows Active Directory to securely manage their passwords independently. End-users who do not remember their password for a particular system or want to synchronize a new password across all or select systems, can now be given the ability to do so instantly on their own. No longer would such users need to be escalated to the helpdesk.

PSS helps your organization:

  • Offload administrative password management procedures from helpdesk teams
  • Improve security through highly customizable user identification processes
  • Enforce password criteria and expiration interval controls
  • Synchronize new passwords across multiple systems and platforms
  • Maintain an audit trail of Password Reset Activity

How it works:

Password management is conducted through a web-facing portal that guides the user through a 4-step process that is both user-friendly and highly secure. PSS uses secured SSL-3 protocol to maintain the privacy of conversations with the authentication server, which can be on a private network or on a secured cloud. Non-password authentication options include security questions and a randomly generated token sent to the user by email or SMS. A user can also authenticate him or herself to another server.

Step 1: Enter user name


Step 2: Authorization through predefined identification modes:

  • Token via email or SMS message
  • Authenticate to another server

Step 3: Validate Systems

Step 4: Provide Security Questions and Answers