Enable self-service password management
Contact UsSpecops uReset lifts the burden from the IT service desk by enabling end users to address common tasks related to password management including forgotten passwords, locked out Active Directory accounts, and password resets and changes. The solution goes beyond the traditional identity verification methods, and revolutionizes self-service with flexible authentication prior to resets. With a powerful multi-factor authentication engine, uReset ensures that users always have a secure way to reset their password, from any location, device, or browser.
Enrolling with uReset is simple. Guide users to their enrollment using configurable reminders and notifications. To guarantee adoption, use the pre-enrollment options (3rd party ID services like Okta or Duo, AD attributes and more) to register users before roll out. If you are using uReset with any other Specops Authentication products, you can extend user enrollments to secure service desk assisted password resets and encryption key recovery. Additionally, customers using Specops uReset with Specops Breached Password Protection will be able to prevent users from selecting a compromised password during the password reset process.
| Feature highlights | Specops uReset | Azure AD self-service password reset |
|---|---|---|
| OOTB 3rd party identity services e.g. Duo Security, Okta, Symantec VIP, PingID | Yes | No (not for reset) |
| Updates locally cached credentials (remote) | Yes (on or off VPN) | No |
| Enrollment notifications | Yes (Email, SMS, balloon tip) | Limited (Email) |
| Helpdesk interface | Yes, with Secure Service Desk | No |
| Reporting | Yes | Yes |
| Compromised password check | Yes, over 3 billion previously leaked passwords are blocked | No, allows use of leaked passwords based on scoring algorithm |
| Dynamic password policy display | Yes | No, users receive vague guidance |
How does it work?
Specops uReset is natively integrated with Active Directory. Configuration of the system is done using Group Policy, without introducing added complexity to your environment. This means that no external database is required to store password related information. User data is stored directly in Group Policy user objects, minimizing security risk while ensuring inherent real-time password provisioning.
uReset consists of the following components and does not require any additional resources in your environment. The authentication backend, web, and identity services are hosted in the cloud.
What does it look like?
End user experience
Specops uReset uses a dynamic and customizable password policy rules display to guide users with real-time feedback as they are typing in their new password.
This allows users to self-correct before submitting the new password and ultimately reduce calls to the service desk.
Specops uReset customers using Specops Password Policy can also display length-based password aging and compromised password check feedback.
What does it look like?
Admin Experience
Specops uReset enhances password security by extending multi-factor authentication to self-service password resets. There are 20+ identity services available to ensure that you can select the best options for your users.
The 20+ identity services enable organizations who are balancing security considerations against the reality of MFA options available for their users to still extend MFA to their users, whether they have their own mobile device or not. Administrators can assign each identity service a trust value, based on their perceived level of security. The trust assignment is managed via stars, as shown in the administrator view above.
The variety of MFA options also means organizations concerned with MFA attacks like MFA bombing or MFA fatigue attacks can require multiple types of ID services including ones that are inherently resistant to an MFA push spam attack like OTP apps, hardware tokens, and more.
How customers are using Specops uReset
Case study highlights
Quickly resetting insecure passwords after ransomware attack
When a group of hackers used weak passwords to carry out a ransomware attack on the
municipality of Kalix in Sweden, the municipality worked turned to Specops uReset to quickly
remove the risk of still-in-use harvested credentials from the attack. Read more.
Eliminating 150 helpdesk calls in the first month
When Montgomery County Community College saw enrollment and adoption issues with their
existing password reset solution, they turned to Specops uReset for easy enrollment and
improved end user experience. Read more.
Reducing need for off-hour IT support with employees traveling across time zones
When one manufacturer saw challenges supporting password reset calls from employees that
were on the road in different time zones, they sought out Specops uReset to improve
productivity and reduce frustration for their IT department. Read more.
Get a Demo of Specops uReset
Interested in seeing how Specops uReset can work in your environment? Click here to set up a demo or trial today.