Self-Service Password Reset

Background

The IMT Cabinet, has requested a change in the way that users reset their passwords. The [current password reset policy], requires heavy interaction with the IMT Support Desk, and is inconvenient for our users. The IMT Cabinet is committed to short term improvements that will enable our long term strategy of Self-Service.

Goal: By Spring II (April) 2004, securely enable a user to self reset their password via üdeupa, after providing sufficient identification credentials electronically.

Password Reset Recomendation Requirements

• Best Practices - found within the Industry, High Ed, and specifically CCCU schools
• Convenience - simple and efficient process for users
• Security - must mitigate risk to an acceptable level
• Privacy - must ensure privacy in accordance with FERPA and other laws
• Simplicity - a simple solution that can be implemented in a short timeframe without infrastructure changes