Specops Secure Service Desk

Employee password resets continue to drive a big volume of the service desk tickets. 

Password reset tickets at the service desk are a great vulnerability for hackers to exploit. In the absence of a self-service password reset solution to direct users to, it is up to the service desk agent to verify that the caller is the owner of the account, before issuing a new password. Secure Service Desk is a tool that enables organizations to enforce secure user verification at the service desk. Use the tool to reduce your social engineering vulnerability, and support your greater IT security infrastructure.  

  • Verify user identity
  • Enforce user authentication
  • Unlock accounts and reset passwords

Employee password resets continue to drive a big volume of the service desk tickets. Aside from draining IT resources, they also introduce a security vulnerability to your business. Can your service desk verify that a user is really who they say they are before resetting their password, and granting them access to an account?

User verification at the service desk primarily relies on knowledge-based questions using static Active Directory information, with “what is your employee ID?” as the most common verification question. Unfortunately, this form of user verification does very little to validate the user. Without the tools in place to enforce and track user verification at the service desk, your business could face non-compliance.

Specops Secure Service Desk increases security with stronger authentication methods that minimize the risk for user impersonation. Identity verification options range from mobile or email verification codes, to commercial authentication providers such as Duo Security, Okta, Symantec VIP, PingID and YubiKey. All of the supported identity services go beyond the knowledge-based “something you know” method by requiring “something you have” such as the possession of a device.

How does it work?

Specops Secure Service Desk is natively integrated with Active Directory. Configuration of the system is done using Group Policy, without introducing added complexity to your environment. This means that no external database is required to store password related information. User data is stored directly in Group Policy user objects, minimizing security risk while ensuring inherent real-time password provisioning.

The solution interface allows service desk agents to view user details and perform the following actions:

1.Manage user enrollments
2.Reset Active Directory passwords
3.Recovery encryption keys for lockouts triggered by BitLocker or Symantec Endpoint Encryption.

The above actions can be secured by enabling user verification enforcement. When this feature is turned on, the agent will need to successfully verify the user’s identity before being able to complete any of these high-risk actions.

User verification can be tracked within the solution via detailed audit logs.

The solution also provides a reporting dashboard that reflects verification data across multiple uses cases. This data can also be exported to JSON or XSLX for further processing.

Feature HighlightsDuo Security Helpdesk PushSpecops Secure Service Desk
Service desk interface for user verificationYes (Duo Push)Yes (multiple authentication options, including Duo Security, Okta, PingID and Yubikey)
Service desk assisted password resetsNoYes
Service desk assisted password resetsNoYes
Service desk assisted password resetsYes (push verification approved, or push verification failed) Yes (details who was verified, for what use case, and by who)

RECENT PRODUCTS

Information Security

CATEGORIES

Group of companies
Cookies policy
About Company

SUBSCRIBE

Get monthly updates and news.

© Copyright 2024 Advanced Technologies Solutions - All Rights Reserved