Report on password resets

Background / Value

With the ARM AD Logga you can monitor the process of resetting passwords. Within this process there is an inherent security risk. For example, if a helpdesk employee secretly resets the password of a manager or executive, they can sign on with a temporary password and gain access to sensitive information. The Manager would probably not notice this and only be confused about why his password is no longer valid, perhaps even thinking that he forgot his password, and then simply request a new one from support.

 

Related features

Analyze AD Logga events with the logbook

Set alerts for groups

Set alerts for user accounts

 

Step-by-step process

  1. Select "Start".
  2. Click on "AD Logga Report".

 

  1. Enter a title for the report and add a comment.
  2. Define the range of the report. For the event type select "reset password".
  3. Define the desired report settings.
  4. Start the report.