Security Based Policy Configurations

LADSS gives employees the flexibility to reset their forgotten password and unlock their locked out accounts but it does not compromise with account security. Every employee who wants to reset their password or unlock their account needs to go through the user verification process. If the verification fails, the employee will not be able to reset password or unlock his account.

Administrators can manage predefined questions and also enable user-defined question policy in advance. The system administrator decides how many questions employees need to answer to reset the password whereas configuring settings for various other fields to ensure total security during the process of password reset/account unlock. The administrator can create a new set of question or edit and delete an existing question anytime. Furthermore, one can also make it mandatory for the users to answer predefined questions. Listed below are the fields that the administrator needs to configure:

• Number of Predefined Questions
• Number of User Defined Questions
• Number of characters in a question
• Number of characters in an answer

LADSS offers dual advantage to users as well as administrators as users can update their own profile and administrators can keep a check on ongoing activities. Admin can preset which AD attributes can be updated by the user from their end. The different available options are:

• No access: Users cannot see the respective field in self update section.
• Read Only: Users can only see the respective field in self update section.
• Full Control: Users can edit and update the respective field in self update section.