> Hello colleauges, > > imaging the following situation: > > User calls the helpdesk to reset/alter some kind > of account-password (NT, RAS, PKI-PIN ...) and you > has to determin wheter the user is the correct > (owner of the account) user. What would you do > to authentificate the users identity? > > What are good methodes to do this? It should be > easy for the user but secure for the administration. > > > Robert > Helpdesk calls user back at a known telephone number (could be a mobile number).
Marc
