Re: How do you manage your QSECOFR profile and other Q profiles? -- MIDRANGE-L

× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.

Subject: Re: How do you manage your QSECOFR profile and other Q profiles?
From: "Lukas Beeler" <lukas.beeler@xxxxxxxxxxxxxxxx>
Date: Tue, 12 Aug 2008 16:52:17 +0200
List-archive: <http://archive.midrange.com/midrange-l>
List-help: <mailto:midrange-l-request@midrange.com?subject=help>
List-id: Midrange Systems Technical Discussion <midrange-l.midrange.com>
List-post: <mailto:midrange-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=unsubscribe>

On Tue, Aug 12, 2008 at 12:24 AM, <macwheel99@xxxxxxxxxx> wrote:

That IT repair person has a master directory of the passwords used by all co-
workers to get onto company network, 400, e-mail, pin # for phone messages,
the whole 9 yards, to facilitate that tech support.
I have seen that master list laying around in plain sight on IT co-worker
desks.

Yeah, and all IT workers can impersonate everyone. That is the wrong
approach to use.

First, use a central authentication database - one username and one
password per employee. Unfortunately, SSO is on the i is not trivial
to setup, but it is doable. This generally improves security as
employees have to remember less passwords.

If a technician needs to logon as a user, he can reset his password.
This will generate appropriate audit events, and automatically lets
the user know that his account has been used by someone else, as his
previous password is invalidated.

As an Amazon Associate we earn from qualifying purchases.

Follow-Ups:

Re: How do you manage your QSECOFR profile and other Q profiles? , rob

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.