Is there any guide/doc about Password Management use cases?
In particular, a customer is asking for self-service reset password to mitigate Help Desk work load but the problems are:
- the authentication source for everything (VPN,email, RSA IGL UI, workstation) is AD domain credentials
- they would not expose RSA IGL UI, forgotten password link included, on on the Internet
In other words, if someone forgot his password, I can not access workstation nor VPN, read email and so on.
Any suggestion to solve this use case?