• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Kisco Solidifies Self-Service Password Reset Tool

    August 19, 2014 Alex Woodie

    Kisco Information Systems has significantly improved its self-service password reset tool for IBM i, iResetMe. With version 2, unveiled this month, Kisco has made the tool more automated and easier to use. And by adding support for stronger passwords and by encrypting challenge questions, it has made it much more secure as well.

    iResetMe is designed to allow users to reset their own passwords, thereby alleviating the IT help desk from the oft-requested task. The Kisco tool, which debuted in January of this year, lets a user establish a new password after verifying his identify by successfully answering up to five challenge questions set during the enrollment process. The product is completely Web-based and is served natively from the IBM i OS using the Apache HTTP server.

    iResetMe has always encrypted the HTTP session between the server and the client. And now with iResetMe version 2, iResetMe can also encrypt the challenge response questions stored on the IBM i server. This would seem to be a logical feature to add, especially considering the poor password hygiene affecting many IBM i shops. It’s never a good idea to store the keys to kingdom in a public area–especially if iResetMe is controlling powerful user profiles with *ALLOBJ authorities–so hiding the challenge questions will close the door on a possible ingress point for hackers and insider threats alike.

    Another major new feature in version 2 is the capability to automatically send email notifications –along with a link to begin the password reset process–when a user’s profile has been disabled and he has been locked out of the system. This will help streamline the password-reset process (and possibly cut down on calls to the help desk) when a user’s password expire. It will also encourage good password hygiene by allowing organizations to adopt more aggressive password-reset timetables while minimizing the impact on users.

    The third major new feature in iResetMe is support for IBM i password levels 2 and 3, which are significantly stronger than the previously supported password levels 0 and 1. Password levels 0 and 1 are limited to 10 characters, and limited to using the letters A through Z in addition to the dollar sign ($), ampersand (@), number sign (#), and underscore (_) characters. Password level 2 supports passphrases up to 128 characters long and allows users to use any keyboard characters. Password level 2 also can tell the difference between upper case and lower case characters, a differentiation that most people have become accustomed to in their password travels (travails?) across the World Wide Web.

    Kisco also added this minor new feature: During password resets, the software now presents the user with the current password rules in effect, such as the password length or the requirement to have special characters, numbers, or upper case letters. The password rules are configured in the normal way through IBM i, so iResetMe doesn’t have any control over these, but reminding users through the Web browser is a nice touch that will save users time.

    The only connection iResetMe has to the IBM i password utility is through an IBM i password check API that it calls. After each check, the password is deleted. “Even a memory dump would not reveal any password information,” Kisco says.

    Pricing for iResetMe has not changed, and starts at $495 for a single partition 25-user license and tops out at $1,295for a single-partition, unlimited-user license. The company also sells 50-user and 100-user licenses. The software supports i5/OS V5R4 through IBM i 7.1. For more information see www.kisco.com.

    RELATED STORIES

    State Of IBM i Security? Dismal As Usual, PowerTech Says

    Forgotten Password Problem Solved, Kisco Says



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    iTech Solutions

    Choose Your Own IBM i OS Upgrade Adventure

    Choice 1:

    • Plan for 3 months
    • Check hardware & software compatibility
    • Check Lan Console, MQ, Domino, SMB, Ciphers, WebSphere, Java
    • Test, test, and test again
    • Prepare for potential downtime
    • Hope the OS Upgrade goes smoothly
     

    Choice 2:

    • Strategically plan alongside a team of IBM i experts
    • Work with experienced system admins to ensure hardware & software compatibility
    • Receive full analysis of Lan Console, MQ, Domino, SMB, Ciphers, WebSphere, Java
    • Know which PTFs are required for the upgrade
    • Relax, and let iTech handle the rest

    Not every OS Upgrade has to be an adventure. We make the process easy for you.

    Having completed thousands of upgrades, we have the experience, know-how, and expertise to get the job done seamlessly. We know what can go wrong, what to plan for, and can act quickly if problems arise.

    No matter where you are in your journey, we’re here to help. Take a look at the video below to ensure you’re on the right path when it comes to your next IBM i OS Upgrade.

    [Video] What You Need to Know to Successfully Upgrade to IBM i 7.4 and 7.5

    An IBM i OS upgrade isn’t complete until all the boxes are checked. Is your list up to date?

    In this video, Pete Massiello covers what’s new on IBM i 7.5, planning tips, pre-requisites, and post-installation requirements for a successful OS Upgrade.

    [ Watch Now ]

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    RJS Software Systems:  Webinar: Top 5 Problems Solved by Automated Report Delivery. August 26.
    System i Developer:  Upgrade your skills at the RPG & DB2 Summit in Minneapolis, Sept 30 - Oct 2.
    COMMON:  Join us at the COMMON 2014 Fall Conference & Expo in Indianapolis, Oct 27-29

    More IT Jungle Resources:

    System i PTF Guide: Weekly PTF Updates
    IBM i Events Calendar: National Conferences, Local Events, and Webinars
    Breaking News: News Hot Off The Press
    TPM @ EnterpriseTech: High Performance Computing Industry News From ITJ EIC Timothy Prickett Morgan

    Manta Continues To Take The IBM i To School Partners Need To Get Certified–For Power8 And IBM i

    Leave a Reply Cancel reply

Volume 14, Number 15 -- August 19, 2014
THIS ISSUE SPONSORED BY:

ProData Computer Services
Enforcive
Shield Advanced Solutions
Computer Keyes
RJS Software Systems

Table of Contents

  • DRV Unveils Fresh New Mobile Apps for Message Management
  • Nice Form! Quadrant Boosts Automation and Control in Formtastic
  • VAI Gives Berk Enterprises a New Analytic View
  • SoftLanding Repositions TurnOver for Database Conversions
  • Townsend Looks to Spread 2FA Far and Wide
  • LaserVault DMS10 Unchains Your Documents
  • Kisco Solidifies Self-Service Password Reset Tool
  • S4i Goes IASP with Document Management Tool for HA Protection
  • Zend Peers Deep into Your Code with Z-Ray
  • Tango/04 Lunches Alignia to Simplify Corporate Monitoring

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • IBM Delivers More Out-of-the-Box Security with IBM i 7.5
  • Groundhog Day For Malware
  • IBM i Community Reacts to IBM i 7.5
  • Four Hundred Monitor, May 11
  • IBM i PTF Guide, Volume 24, Number 19
  • Database And Developer Enhancements In IBM i 7.5 And 7.4 TR6
  • Thoroughly Modern: The Real Top 5 Challenges For IBM i Shops Today
  • In The IBM i Trenches With: Chilli IT
  • Power Private Cloud Gets More Cloudy With Pricing Tweaks
  • Power9 Servers Get Updated Flash Drives

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2022 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.