Microsoft Identity and Access Management Series

One of the weakest areas of security for an organization is the inability to control users' passwords. Passwords compromise via social engineering; worms and viruses are becoming more frequent. Whether via these nefarious means, or if a user simply uses their post-it note of all their network credentials, the impacts upon an organization's security, financial health, public credibility, and regulatory compliance can be substantial.

The Password Management paper outlines different approaches to password management and addresses the technical issues that effective password management involves. The paper uses a fictitious organization to illustrate the process of how to determine password policy requirements, carry out step-by-step procedures to enforce a strong password policy, and then manage the organization's passwords through both an intranet and an extranet. Finally, the paper discusses how to validate the password management implementation and perform common operation tasks to maintain it.

More information : http://www.microsoft.com/technet/security/topics/identitymanagement/idmanage/default.mspx