I have worked with a client who has implemented two of Tools4ever’s password management solutions, Enterprise Single Sign On Management (E-SSOM) and Password Synchronization Manager (PSM ), the latter being a module of User Management Resource Administrator (UMRA). These are two solutions with different philosophies when it comes to managing passwords; however, they can work together to provide a complete password management solution.
E-SSOM is a true single sign-on solution. A user may have a handful of applications, each with a different password and different password complexities. Once the user enrolls once into each application, E-SSOM will keep track of their credentials securely, and the next time the end user launches the application, they are automatically logged in.
The PSM module of UMRA is a synchronization solution. Your users may have several applications and you may want to synchronize their Active Directory password with this application. During a Windows password reset, PSM will push the new Windows password out to the designated applications. With only the PSM in place, the end user must still physically go through the log in process in order to use their application.
While the two theories might seem at odds with each other, we can in fact make them work together through the E-SSOM COM object. The E-SSOM COM object allows you to update the stored credentials in the E-SSOM database when a user triggers their password to be synched with PSM.
Now we have a blended approach to password management. PSM allows you to choose which application you wish to synch with Active Directory and the ESSOM COM object will update only the stored credentials you have designated.
More details on the ESSOM COM object can be found here: http://www.ssonews.com/single-sign-on/2011/6/1/single-sign-on-com-object-support.html.
