NOREX News section will be updated frequently with member alerts, news releases, helpful links, event notices, member gold nuggets, resource additions and helpful community building information. If it's new, you will find it here.
In a recent NOREX WebForum on this topic, members exchanged solutions and best practice on different aspects of this challenge.
A Role Management process was identified as a great way to effectively distribute the appropriate access to employees. While it can be extensive to set up, it is impactful when completed.
Many automated password reset solutions were mentioned. Some of these products included more functionality - like multifactor authentication. Products shared were AD, Microsoft Identity Manager; Thycotics (with average satisfaction); Tools4Ever; Avatier Password Station; ForeFront Identity Manager SSPR; NetIQ Self-Service Password Reset; ManageEngine (used by several); Portalguard; SecureAuth (not satisfied); Courion (poor but improving when became Fischer International); and Sailpoint Identity Now password module. Sailpoint was mentioned by three with one very satisfied.
A significant highlight was polling the 50+ participants on the new NIST Password Standards https://pages.nist.gov/800-63-3/sp800-63-3.html. The National Institute of Standards and Technology (NIST) is well recognized by NOREX member organizations for security guidelines/frameworks. A member generated list of questions was converted to polls to provide peer feedback on member plans to adopt all or portions of the recently introduced password standards.
An additional poll (not generated by NIST Standards) reported many members using Multi Factor Authentication.
Contact us if you would like to receive the transcript once it is