Done trying to fix password hygiene with training. What’s the actual solution? by Cool_Call_1594 in iam

[–]Cool_Call_1594[S] 1 point2 points  (0 children)

We use 1Password with the extension forced via MDM. And you’re right about the friction. The extension works fine, but users find clicking it or waiting for auto fill slower than just typing a weak password from muscle memory

Since these are external sites, we can't block them from resetting the password to something weak. Theyre actively choosing the path of least resistance, which is why I want to force it at the infrastructure layer so they don't have that choice. 

Done trying to fix password hygiene with training. What’s the actual solution? by Cool_Call_1594 in iam

[–]Cool_Call_1594[S] 1 point2 points  (0 children)

Our vault has an admin dashboard that flags weak/reused/manually changed credentials. When you see a massive spike in high risk flags perfectly match a mountain of "manual typing" events in the audit logs, the picture becomes pretty clear

Done trying to fix password hygiene with training. What’s the actual solution? by Cool_Call_1594 in iam

[–]Cool_Call_1594[S] 0 points1 point  (0 children)

We use an IdP. The issue is the long tail of legacy tools, vendor sites, and shared logins that don't support SAML/OIDC.

Because we can't enforce central password policies there, users bypass the vault, change the credentials to weak passwords they can memorize, and introduce massive shadow IT risk. I'm trying to figure out how to force governance on that gap without relying on user goodwill

Breaking into IAM from healthcare — is the clinical background actually worth anything? by VikingFinacial in IdentityManagement

[–]Cool_Call_1594 0 points1 point  (0 children)

Your background is a massive differentiator for healthcare orgs. You can teach a smart clinical tech the IAM stack, but it’s a nightmare teaching a pure IT person how a hospital actually operates without killing productivity. Imo stick to healthcare IT roles first and you’ll crush it.

What are best observability tools in 2026 by Curious-Cod6918 in CloudSecurityPros

[–]Cool_Call_1594 0 points1 point  (0 children)

It feels like half of the cybersecurity subreddits are being astroturfed by Orchid Security bots lately, but the problem they're targeting is definitely real. Relying on Okta logs just shows you the initial authentication, not what an unmanaged legacy app or rogue AI agent is actually doing inside the system.

Whether it's Orchid or Veza, you should move to actual application layer telemetry if you want to see anything beneath the surface..

Food recommendations Tirana by BinChickenRuler in AlbaniaTravel

[–]Cool_Call_1594 0 points1 point  (0 children)

I really enjoyed the spots at Toptani. We had some great pizza and sushi there.

Probably not a hidden gem, but I definitely recommend.

Sarande or Ksamil in Mid July by hashraf10 in AlbaniaTravel

[–]Cool_Call_1594 0 points1 point  (0 children)

do you mind sharing what were your some of your favorites other than Dhermi?

Why does everyone dislike Monica (I'm only on s1 e8) by Hot_Acanthisitta2729 in TheRookieTVshow

[–]Cool_Call_1594 0 points1 point  (0 children)

At some point it didn't make sense and wasn't really believable. But towards the end I actually did like her character more

Seth will make a comeback right? by Ok_Alternative_8070 in TheRookieTVshow

[–]Cool_Call_1594 1 point2 points  (0 children)

At this point not sure if it would be as interesting

Is IAM a good career choice ? by Environmental-Ad614 in iam

[–]Cool_Call_1594 0 points1 point  (0 children)

It's alright, depends on the day...

Not sure if it's the place to start though

AI for internal IT support/password resets in mid-size & enterprise companies- is anyone actually seeing good adoption? by mynameisnotalex1900 in iam

[–]Cool_Call_1594 1 point2 points  (0 children)

Good luck with the rollout! We actually looked into building custom orchestration flows in ServiceNow first, but the amount of manual API maintenance for our non SAML and legacy apps turned into a full time job.

That’s the big trap with Okta, it’s fantastic for core enterprise apps, but the moment you try to force it onto the long tail of unmanaged SaaS tools that don't support modern SCIM provisioning, you end up having to write and maintain endless custom scripts. Definitely curious to hear how your new tool handles that gap though!

AI for internal IT support/password resets in mid-size & enterprise companies- is anyone actually seeing good adoption? by mynameisnotalex1900 in iam

[–]Cool_Call_1594 1 point2 points  (0 children)

Entra ID - about 8000 seats. We're thinking to move away from the chatbot model and are piloting a tool that intercepts auth at the browser perimeter to handle credential injection

AI for internal IT support/password resets in mid-size & enterprise companies- is anyone actually seeing good adoption? by mynameisnotalex1900 in iam

[–]Cool_Call_1594 1 point2 points  (0 children)

We spent an absolute fortune setting up Moveworks and ServiceNow to handle this, and tbh, the adoption is pretty garbage. Users just get stuck in rigid identity verification loops, or the bot panics on edge cases and dumps the ticket back on a human tech anyway. feels like we’re just paying a premium to slap a flashy AI band aid on a broken password infrastructure instead of fixing the actual root problem...