Question and Answer settings - AD Self Service
Security Based Configurations
User identity management is considered imperative and this is why myriad of organizations are looking forward for multi-tasking self-service applications to take care of organizational security. LADSS provides an array of security verification layers to conduct user authorization. Moreover, administrator has access to track the user activities performed using the software. This tool offers advantage to users as well as administrator, as users can update their own profile and administrators can keep a track on ongoing activities. Few security based options in LADSS are:
- Question and Answer Policy Configuration
- Self-update configuration
- Support for SSL environment
Question and Answer Policy Configuration
LADSS gives employees the flexibility to reset their forgotten password and unlock their locked out accounts but it does not compromise with account security. Every employee who wants to reset their password or unlock their account needs to go through the user verification process. If the verification fails, the employee will not be able to reset password or unlock his account. See the below given image to understand how LADSS manages security:
Administrators can manage predefined questions and also enable user-defined question policy in advance. The system administrator decides that how many questions employees need to answer to reset the password whereas configuring settings for various other fields to ensure the total security during the process of password reset / account unlock.
Listed below are the fields that the administrator needs to configure:
- Number of Predefined Questions
- Number of User Defined Questions
- Number of characters in a question
- Number of characters in an answer
The administrator can at any time create a new set of question or edit and delete an existing question. Furthermore, he can also make a predefined question mandatory for the users to answer.
LADSS offers dual advantage to users as well as administrators as users can update their own profile and administrators can keep a check on ongoing activities. Admin can preset which AD attributes can be updated by the user from their end. Three different options are available:
- No access: Users cannot see the respective field in self update section.
- Read Only: Users can only see the respective field in self update section.
- Full Control: Users can edit and update the respective field in self update section.
Support for SSL environment
Organizations that want to have a secured access of LADSS can also benefit from LADSS. It supports SSL connectivity (HTTPS) and users can be rest assured about total data security. Organizations need to integrate their SSL certificate and experience secure connectivity through LADSS. Also, admin can set the user session expiry duration. As the time period expires, users will be automatically logged out from LADSS portal.