Skip to main content

Implementing self-service password reset

Bravura Pass is an integrated solution for managing credentials across systems and applications. It simplifies the management of passwords, tokens, smart cards, security questions and biometrics. Bravura Pass lowers IT support cost and improves the security of login processes.

Bravura Pass includes password synchronization, self-service password and PIN reset, strong authentication, federated access, enrollment of security questions and biometrics and self-service unlock of encrypted drives.

You can configure Bravura Pass to allow users to change forgotten passwords, synchronize some or all of their passwords, or unlock accounts.

Answer the following questions to determine the best solution for self -service password reset:

  • Will users be resetting their password only from a locally connected network?

  • Will users need to reset their password from remote locations such as a WiFi hotspot?

  • Will the Credential Provider be installed on a user’s workstation to provide a tile users can click to reset their password?

  • Do users rely on cached passwords when not connected directly to the domain?

Self-service password reset provides the following solutions:

  1. Web-based password management - includes self-service if the user can access Bravura Pass and assisted password changes.

  2. Local Reset Extension - updates cached network credentials on a user’s Windows client workstation after a successful web-based password reset. This addresses the issue of intruder lock-outs caused by workstations continuing to log into network resources using cached, no-longer-valid passwords.

  3. Login Assistant - uses a secure kiosk account (SKA); to provide users with secure access to the Bravura Pass password change interface. Login Assistant also includes an optional Credential Provider extension to provide a Change my password tile on the Windows login screen.

The following sections describe the core features.

In this section: