Adaxes

Password Reset Questions and Answers

0 votes

Hello Support,

Are the self service questions and answers stored securely?
Are they stored in the Adaxes database or in Active Directory?

Thank you!

by (360 points)

1 Answer

0 votes
by (216k points)
selected by
Best answer

Hello,

The information is stored on Adaxes backend (which is ADAM or AD LDS depending on the operating system). By default, only Adaxes default service administrator (the user that you specified during Adaxes installation) can access the ADAM / AD LDS instance used by Adaxes.

The questions that were used to enroll a user are stored unencrypted. As for the answers, the actual answers are not stored. Adaxes stores only hashes of the answers, and when a user tries to self-reset a password, Adaxes compares the hashes of the answers.

0

Support, thank you very much!

by (360 points)

Related questions

0 votes
1 answer
Is Self Service Password Reset, multi factor with radius then questions possible?

We are trialing Adaxes and are wondering the following two things are possible. Is it's possible to have the order of Authentication methods adjusted ? Is it possible to import an ... 't look to exist, but would it be viable to add them as feature requests ?

asked Jul 6, 2020 by dgrandja (70 points)
0 votes
1 answer
Is there a way to allow a user to reset password with authenticator or answering questions?

is it possible to allow a user to enroll for both options, or even only one option out of the two available? I would like to give my users the choice to use either. Some users may not want an authenticator, but other's might do.

asked Nov 6, 2019 by mashworth (80 points)
0 votes
1 answer
Password Reset Security Questions

We currently use a paper form for security questions which helps us to reset passwords of remote users. However the paper list has become large so we are looking ... actually find the secret questions that users have submitted. Is this possible with Adaxes?

asked Jun 20, 2017 by will17 (350 points)
0 votes
1 answer
Password self service reset: Questions OR Email/SMS

Is there a way to allow users to either answer the self-service reset questions OR get an SMS/Email verification? I can see how to set a policy for either one, but is there any way to enable an end user to choose which to use?

asked Apr 4, 2016 by johnsonua (390 points)
0 votes
0 answers
Passwordless and password reset

Hello We are evaluating Adaxes for our consulting company and for our customers as well. Our company is fully password less today. Our production setup works with FIDO2+PIN ... confirmation is visible Is it something we can achieve with Adaxes? Thanks a lot

asked May 24, 2021 by ygini (240 points)
3,538 questions
3,229 answers
8,224 comments
547,749 users