The
Password Recovery Console is a web-based application that enables the delegation of password recovery privileges.
The
Password Recovery Console interface can be accessed from any networked 系统, and can be configured to allow specific users in your enterprise to recover the password of any or all accounts that have been stored and set by User Manager Pro and/or Random Password Manager. The
Password Recovery Console offers granular control that enables Administrators to assign responsibility for recovery of particular accounts or groups of accounts to appropriate employees (such as support or help desk personnel).
The Need for Strong Local Credentials
One of the easiest ways to compromise a corporate network can be through local 系统 credentials. In addition to Domain or Active Directory 安全, each Windows server and 笔记本 系统 in the company also has local 安全; this means that every 系统 has a local Administrator account that allows access to that 系统, and potentially exposes vital corporate resources.
Microsoft does not provide a convenient way to disable or easily 处理 all of the local accounts that exist in a company’s Windows environment. Too often, network managers are forced to take a shortcut, like setting a common password for all of their local Administrator accounts. This practice creates a significant hole in the company’s 安全; if the password is discovered or compromised through a brute force attack (which may not be detected because the attack could be limited to a single 系统), every 系统 in the company would be immediately vulnerable because all of those systems share the same password.
The mandates of Sarbane-Oxley, HIPAA, Gramm-Leach-Bliley, the California 安全 Breach Information Acts, NASD 3010, SEC 17a-4, 21 CFR Part 11, DoD 5015.2 require the implementation of reasonably hard to compromise local logon credentials. This requirement is important to prevent the exposure of critical data.