Report on password resets

Using AD Logga, you can monitor the password reset process. Within this process, there is an inherent security risk.

For example, if a help desk employee secretly resets the password of a manager or executive, that employee can log in with a temporary password and gain access to sensitive information. The manager may not notice this and be confused about why his password is no longer valid. As a result, thinking that he forgot his password, he requests a new password from support.

Using the AD Logga report, you can review all password resets to ensure they were valid requests.

Create the report

1. Log in to the Access Rights Manager application.

2. Click Start in the toolbar.

3. Under Security Monitoring, click AD Logga Report.

   

4. Configure the report settings.

   

   1. In the Title and Comment fields, enter a title and comment for the report.

   2. In the Objects, Event Type, Event Author, and Object Class boxes, define the report range.

      For the event type, select Reset password.

   3. Click the Settings menu and define the desired report settings.

   4. Click Start to generate the report.

See the following sections for more information.

• Analyze AD Logga events with the logbook

• Set alerts for groups

• Set alerts for user accounts