O'Reilly logo
  • Junior Santiago thinks this is interesting:

One of the goals for a self-sustaining network is to remove the need for administrator intervention whenever possible. Traditionally, administrators spend an inordinate amount of time dealing with problems such as password resetting. Although it might not be problematic for the administrator of a small business to have a close eye on this type of activity, it becomes challenging as the organization increases in size and complexity. Allowing users to rest their own passwords using an identity manager will allow administrators more time to focus on the rest of the network. However, by removing oversight into the reset process, you provide an opportunity for an attacker to take advantage.