Correct. I did not correctly understand the
reference. I was speaking of bank employees.
However I will hazard a guess as to why banks don't.
Please understand that this is a completely unsubtantiated opinion.
All for-profit businesses (including banks) exist to make money.
Their practices are always based upon cost versus benefit. In this
case, I would think that their cost of requiring PIN changes outweighs the
benefit of increased individual security. If someone loses their PIN
then his/her individual accounts are in danger and not a larger group of
customers. Especially if the additional cost includes the loss
of customers who think that security is "silly" and would rather bank
elsewhere.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ramon Linan
Sent: Tuesday, September 19, 2006 12:43 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] SHAREPOINT AND EXTERNAL LDAP
Hi,
In the bank application case, I am not talking about the
bank users having to change the password, I was meaning the bank clients having
to change their PIN to access the online system... you did not required from
your online clients to change their PIN every X days???
Thanks
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Richard Kline
Sent: Tuesday, September 19, 2006 12:11 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] SHAREPOINT AND EXTERNAL LDAP
I've worked for several banks and have never, ever
not seen required password changes. In fact the
reverse problem often occurs. Bank systems do not use the same
authentication model (mainframe, domain, application specific) and require
password changes on different cycles. Personnel often have the proverbial
post-it pad in their desk drawer with written account names and
passwords.
I'm not a SharePoint expert and so will leave others
to comment but I'd be very surprised if a non-domain LDAP can be used....
(guess that could be construed as a comment, but it's really
just reasoned speculation).
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ramon Linan
Sent: Tuesday, September 19, 2006 11:45 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] SHAREPOINT AND EXTERNAL LDAP
HI,
I have
a SharePoint site for a client, it is driving me crazy because the sales
people are telling me that the users for this site, cant have their password
expiring. The client is a government agency, so I don't want to be
responsible for any information being stolen.
How
big of a security risk is not having password expiring? it seems to me
like security 101, but the sales guy is saying that banks don't ask you to
change your password every X day, good point.
Something I was thinking is having SharePoint authenticating with their
LDAP server, is this possible to do? can anybody point to a url on how to do
this?
thanks
Rezuma