Transcript
and cybersecurity. My company Rosal, Texas is aerospace and defense sector. We are doing a manufacturing in Bangalore office and we are working mainly for the defense sector. When I joined Rosal, Texas six years before, my first task to find a tool for the password reset. So, my job is to find a tool that do only the password reset, but when we are evaluating the other products, we came to know about the Managed Engine Self-Service Plus. The name itself impressed us, Self-Service Plus, and we started evaluating that. The other products which is providing only the password reset where this Managed Engine AD Self-Service Plus providing the whole password reset and other features like MFA, other details, it's helping us to improve a lot apart from password reset. The other solution provider providing only the password resetting, it is complex for end user, very user friendly for the IT admins. The one word answer is simplicity of the AD Self-Service Plus. It is not only providing the password update, it is providing the account unlock, password forget option, security question and answer, VPN, MFA for the VPN, MFA for the end point, so those things providing apart from the password reset. AD Self-Service Plus favorite feature is account unlock because usually the users will come and ask us to unlock the account which is taking more time we have to log into the AD we have to unlock it and user can able to see what we are doing it but here user can able to do that it directly impacting in the business requirement like the productivity got increased anytime they can able to unlock their self that is a greatest feature I can say. There are two use cases in AD Self-Service Plus. One is that user password reset where user can able to self-service them able to unlock and reset the password. Another one thing is for the IT admins where we have to enable the MFA for the users to make the confidentiality of the systems and also VPN. So that is the future we started only with the password resetting tool but the AD Self-Service Plus providing the plus option of MFA in the end points VPN SSO. So AD Self-Service Plus is provided more flexibility with the IT admins where everyday lot of people will come around and ask us to reset the password unlock the account and most of the case user will directly from the other users stating that can you please reset my password this is my password I required. So IT admins may know the user password to prevent that we implemented AD Self-Service Plus where user can able to do that and they can able to unlock the account and the additional feature for IT admin is that whenever we are logging to the VPN or end points we need additional privilege for the zero trust. So for that we implemented the MFA so that is the second use case we are using that. So AD Self-Service Plus improved a lot on the IT security poster side. So one is that IT admin will not know the password of the end user and they are not able to impersonate as other user to reset the password and we can able to set the password policy enforcer where we can able to define what kind of password they have to set the password complexity and other things and additional feature which we enabled is that conditional based access. So if the system is not connected to the network or something they are not able to reset the password. So those things actually really helped us to make our security into the next level. I like to differentiate two different part in this. One is that onboarding team. So onboarding team when they try to help us. I was into the operation team. I was not fully aware about the cyber security. So onboarding team really helped us to implement this software. And after that we improved a lot. The one thing I can tell you that the entire six years we contacted the service team only three times. So once you set up the AD Self-Service Plus, you don't need to touch anything. Once it is fully configured, the onboarding team will help you. Once they configure everything, you don't need to monitor anything. Just need to monitor what users are doing, not the software doing. So the service team is really helpful whenever we are reaching out to them the three times we reached out. It is on-time support. Like anytime they will be reaching out to like live chat and on-call support, everything they are providing well. Rating for AD Self-Service Plus, I'm going to give nine out of ten. So why? Because it's not only a password policy resetting tool. It is doing multiple activity and it is very user-friendly and very simple to understand. So that's why I'm giving nine out of ten. The AD Self-Service Plus is providing the password policy enforcer where we can able to set the complexity and also we can add the dictionary words where we can able to define that these kind of passwords, they should not use it. For example, any password breached in the dark web, we can able to import and we can able to put it there. And most common passwords which users are always trying to use it, those things we can able to define in the AD Self-Service Plus, which is not at all possible, which is quite complicated in the native Windows solution. The conditional access policy where we implemented the user need to contact AD Self-Service Plus or VPN, they have to be in a particular network or particular condition where we are defining what we are defining. This will help us to prevent some user impersonating as a network user in the company and it will help us to reduce the false positive like some other user is trying to access and they are trying to do a privilege escalation. Those things we can able to achieve. Yes, so the health check is the red flag for IT admins, right? So we may think that once onboard team implemented everything, then we think that, OK, the software is fully set up and we can continue whatever we want, right? But the health check team will always contact us and they will ask the schedule to check the entire system, how it is working, any improvement is required, and they will check all the possible way where they can able to find out a small issue which can help our organization to make more secure, right? So the health check is always giving the red flag like what we are missing and how we need to implement. They are not only providing what is missing, they are providing what you need to improve a lot. OK, the recommendation part, I used to go with 10 out of 10 because it's a very simple lightweight tool where you can able to achieve whatever you are looking for in the password resetting and Self-Service Plus. And the other thing I need to tell one small story that I started as an IT operation guy and my first cybersecurity tool is AD Self-Service Plus and my first certification is also from the AD Self-Service Plus. And whatever I am doing in the AD Self-Service Plus is helping me to improve a lot in the cybersecurity field. So I would like to recommend not only the IT admins, the beginner who is stepping into the cybersecurity, please evolve with the AD Self-Service Plus. When we implement the AD Self-Service Plus, we are happy. IT admins are happy, management is happy because of the pricing and very lightweight tool. And it's not about the IT admin and management, it's about the end user. So they are very much happy about the tool. The only tool which user didn't complain about the implementation, they are telling that AD Self-Service Plus is giving a lot of flexibility to reset the password and other things. So the Managed Engine AD Self-Service Plus is given the base for the cybersecurity. So once we implemented this, then we started with the AD Self-Service Plus and after that we implemented so many Managed Engine tools and now we are into the next level, into the Managed Engine. So we started Managed Engine with the evaluation of AD Self-Service Plus and we implemented that. That AD Self-Service Plus is given a base for anti-cybersecurity and the whole company got trusted with the Managed Engine and after that we implemented so many tools from Managed Engine like Endpoint Central, PAM360, Log360, everything we implemented. So when it comes to the renewals or support team, everything was very smooth. One email, they will reply to you. So one transition I can tell you that when we have started with the AD Self-Service Plus, it's only the password resetting tool and we used the VPN for MFA for VPN and other things. But after that, we came to know that Managed Engine AD Self-Service Plus is providing optional content for the customer. So we started with the Managed Engine and after that we started with the AD Self-Service Plus. So we started with the AD Self-Service Plus and after that we started with the Managed Engine AD Self-Service Plus is providing an option called Have I Pwned, where we can be able to set up an option. By default, the user will not be able to use the dark web leaked credentials. So if we are using the dark web leaked credential in our organization, no matter how security tool implemented or how strong it is, they can easily break out. The hackers can be able to easily break out. So that is one really awesome thing about the AD Self-Service Plus. It's giving a proactive method of cybersecurity measurement and we implemented that. It's simple and it gives more ROI. So Managed Engine is like my hometown. So we started evaluating and I become a customer, then I become a customer advisory board member, then speaker, now I'm here. So Managed Engine always gives me whatever I am looking for, not only about the product, it's about the experience and the knowledge. So really, I like Managed Engine for that. Yeah, Managed Engine, when we started, I was an operation guy and I came to the cybersecurity with the AD Self-Service Plus and each and every word that they are mentioning like IAM, VPN, MFA, everything is asking me to study more on the cybersecurity where I learned about the small, small thing. Then it gave me a full impact on cybersecurity where I am here. Okay, so there are two products which I love in Managed Engine, which we implemented. One is that AD Self-Service Plus, which is very simple and lightweight tool. The other thing is PAM360. As a privileged user, like me, I always want to be implemented something to control the overlooking of IT admins. We implemented the PAM360, which is also very lightweight tool, very easy to configure, onboarding also very easy, and it is more reliable. And it's providing the auto password, auto rotation and other things. So I would like to give two favorites, not only one. So one is AD Self-Service Plus, another one is PAM360. So when I started studying about the cybersecurity, I came to know a rule called 90 is to 10. So the 90 is user, the 10% is whatever we are doing as IT admin security tools. Whatever we are doing, it's only 10%. 90% is focusing only on the end user. So what end user really need? They don't need any other things. They need a strong password first. Other things IT admin can able to do that. So the base is set by the AD Self-Service Plus. That is one of the best tool, in my opinion. So when we started with the Zero Trust transformation, the first tool, again, we implemented in AD Self-Service Plus, where we can able to enable the Zero Trust like MFA for endpoint connection, VPN. And even for the password reset, they have to do a multi-factor authentication. And it helped a lot to implement the Zero Trust with a single click. So the IT admins who are all evaluating the AD Self-Service Plus or any password resetting tool, please walk through your shop floor and check with your user. They will say that me and my friends are using the same password. So they will be resetting the same password where you can able to control in the AD Self-Service Plus with a single configuration. And additional one thing I like to tell about the AD Self-Service Plus is that you can configure everything. You don't need to rely on the support team. It's very easy and simple. When it comes to the dashboard, it's giving the overall insight about the AD and how the users are using that, how many passwords have been reset, those who are not reset, how many users are pending for the reset, how many passwords got expired. So those things we can able to see it in a single page in the dashboard part, which helps us to take the preventive action like send a reminder to the users and other things we can able to take care. So when it comes to the report parts, it's providing a lot of reports where we can able to customize and we can able to schedule the reports. And we have scheduled so many reports which help us to get the compliance part where we are monitoring daily basis and it can able to give it to the right person about the report on the right time. So those things we can able to achieve in the report part. So one of the best thing in the AD Self Service Plus is a password expiry notification where we can able to schedule to remind the user to change the password because every user is changing the password and they will not remember when they have to again reset the password. So we have a 45 days or 90 days, 60 days period we can able to set up, but user may not be able to remember what date they have to reset it. So this password expiry notification will help us to send out an email on daily manner and they can able to get the expiry notification till they change the password. So they are not able to ignore it. So they have to compulsorily change the password to stop it. So when it comes to the onboarding team, we started with only the password resetting tool, but when the onboarding team came into the picture, they were asking from end to end, they are asking what is your pain point, how you want to implement, what is your network requirement, what is other requirement and they will not only implement, they will give the training and other things post implementation support also they are providing. So that is very impressive and they are really make our job very easier. Okay, so when it comes to the health check, Akshay is helping us to do the health checkup and he pointed out that we are missing some option which we are supposed to implement, which we are missed out and he has given the detailed explanation why it is required. It is not about the option why you are leaving. It's about the option why you are leaving. So that is what we are trying to do. He has given the detailed explanation why it is required. It is not about the option why you are leaving. It's explanation provided by him is like why it is required and how it can be secure in your organization and follow up email and after that he will ask you to implement that based on the time schedule. Okay, so when come to the ticketing before implementing the Aries Health Service Plus was like a lot of emails, phone calls, messages will come as to reset the password. But once we implement that we can able to see 90% of password related ticket has been reduced and it not only the ticket, the phone call, unusual hours like off working hours and other things. We used to get the call to reset the password and we have to log in and we will ask them to share the password. We will reset and we have to share it with them. But after implementing the Aries Health Service Plus we can able to reduce those kind of things and they can able to do it by themselves. Manage Engine, not only the Aries Health Service Plus, the entire Manage Engine if I want to tell something, it's a platform of trust and simplicity. Manage Engine.
