Results 1 to 5 of 5

Thread: Thinking of using this technique to allow for initial user authentication

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Dec 4th, 2012, 05:16 PM #1
szlamany

View Profile

View Forum Posts
Thread Starter
MS SQL Powerposter

Join Date

Mar 2004

Location

Connecticut

Posts

18,263
Thinking of using this technique to allow for initial user authentication

We want to send a regular "letter" in the regular old postal carrier type of mail delivery method - to a bunch of users who we want to allow access to a secure web page.

They will login with the email address they have given to us - which we have marked in a CONTACT table for these individuals.

With that said - the letter does not need to include the EMAIL address - we can simply tell them to use the email they gave us.

The question becomes what do I tell them to use as a password? How bad of an idea is it to put a PASSWORD in this letter - and make it be the same INITIAL password for all these contacts that are going to be connecting??

Obviously I would "pre-expire" this initial password for each user - so they have to select a new one upon the initial login.

*** Read the sticky in the DB forum about how to get your question answered quickly!! ***

Please remember to rate posts! Rate any post you find helpful - even in old threads! Use the link to the left - "Rate this Post".

Some Informative Links: [ SQL Rules to Live By ] [ Reserved SQL keywords ] [ When to use INDEX HINTS! ] [ Passing Multi-item Parameters to STORED PROCEDURES ]
[ Solution to non-domain Windows Authentication ] [ Crazy things we do to shrink log files ] [ SQL 2005 Features ] [ Loading Pictures from DB ]

MS MVP 2006, 2007, 2008
Reply With Quote