One Identity Password Manager (Active Directory Lightweight Services) is a Web-based application that provides an easy-to-implement and use, yet highly secure, password management solution. Users can connect to Password Manager by using their favorite browser and perform password self-management tasks, thus eliminating the need for assistance from high-level administrators and reducing help desk workload. The solution offers a powerful and flexible password policy control mechanism that allows the Password Manager administrator to ensure that all passwords in the organization comply with the established policies.
The key features and benefits of Password Manager include:
- Global access. Password Manager provides 24/7 and 365 days access to the Self-Service site from intranet computers as well as via Internet from any most common browser. The solution supports flexible access modes and logon options.
- Strong data encryption and secure communication. The solution relies on industry-leading technologies for enhanced communication security and data encryption.
- Cross-platform password synchronization.Password Manager has been designed to use One Identity Quick Connect Sync Engine, Redistributable Secret Management Service, which makes it possible to automatically synchronize users' passwords across multiple connected data sources.
- Web interface for a helpdesk service.Password Manager features the Helpdesk site which allows administrators to delegate helpdesk tasks to dedicated operators. These tasks include resetting user passwords, managing users' Questions and Answers profiles, and assigning temporary passcodes to users.
- Email event notifications.Administrators can configure event notifications that are sent by email to designated recipients when specified events occur.
- Powerful password policies.Password Manager ensures that only passwords that meet administrator-defined policies are accepted. Unsuccessful authentication attempts are logged and the corresponding accounts are locked if necessary.
- Granular policy enforcement.Password policies are applied on a per-group or per OU basis.
- Questions and Answers authentication mechanism.To reset passwords or unlock accounts, users are prompted to answer a series of questions for which users provide their secret answers when registering with Password Manager.
- Enhanced user name search options.Users can be allowed to view their account attributes, such as user logon name, first name, display name, and SMTP address, when searching for their forgotten user names. A more specific search query returns the most relevant search results.
- Fault tolerance and scalability.Password Manager is designed to work with network load balancing clusters and in a Web farm environment.