Re: Dealing with password authenticated online content

Re: Dealing with password authenticated online content Martha Coleman 30 May 2007 13:38 UTC
I would be very interested in learning about the macro that Susan is
describing, especially if it is something that can be done through
Innovative Interfaces - Millennium (Web Pac Pro).  Thanks.
Martha

Susan Wishnetsky wrote:

>At 02:48 PM 5/29/2007, Susan Davis wrote:
>
>>.... We have a little script (I'm not the technical person here so
>>I'm just describing the process in generic terms) that is invoked
>>when a user clicks on the 856 link which leads to an authentication
>>page.  After the user inputs the necessary information to verify
>>themselves as a legitimate university users, they are taken to a
>>webpage that lists the username and password for the product, as
>>well as the URL to the product itself.
>
>That's not quite what I was describing.  It sounds like what you're
>describing allows the users to see the passwords.  If they can see
>them, they can share them with unauthorized people.  And they have to
>bother with typing them in, to get access.
>
>I was envisioning (or remembering) a system in which the user never
>sees the password, and never has to type it in.  The macro does that
>for them.  Invisibly.  Has that ever been done?  SW
>
>
>>The downside of this process is that many users fail to read the
>>entire webpage explaining the need to take note of the username and
>>password and instead try to use their university authentication
>>again to gain access.
>>
>>With an ever increasing demand for one click access, this is not a
>>particularly elegant solution.  But it does keep the passwords
>>"safe" in that not just anybody can readily obtain them, nor does a
>>patron have to come to a service point to ask for them.
>>
>>Susan
>>
>>Susan Davis
>>Head, Electronic Periodicals Management Department
>>University at Buffalo (SUNY)
>>134 Lockwood Library
>>Buffalo, NY  14260-2210
>>(716) 645-2784
>>(716) 645-5955 fax
>>unlsdb@buffalo.edu
>>
>>***Please consider the environment before printing this email****
>>
>>--On Tuesday, May 29, 2007 2:13 PM -0500 Susan Wishnetsky
>><pasiphae@NORTHWESTERN.EDU> wrote:
>>
>>>At 12:23 PM 5/29/2007, Chad Hutchens wrote:
>>>>We have the same de-facto policy.  If the publisher or provider does not
>>>>offer IP authentication, we don't activate the title electronically ....
>>>
>>>We do the same, but I thought that some libraries had come up with
>>>a way to automate the entering of passwords.  Once the user clicks
>>>on a password-only resource, the user (or the location of the user's
>>>workstation) is authenticated by the library's system, which proceeds
>>>to activate a kind of macro to enter the password for them, a process
>>>that is invisible to the user.
>>>
>>>There'd probably have to be separate macros, with unique instructions,
>>>for each password-only product ... but if you really wanted to provide
the
>>>product, it'd be worth it.  Did I dream this?  Is it being done
anywhere?
>>>Can it be done?  SW
>>>
>>>
>>>Susan Wishnetsky
>>>Electronic Resources Librarian
>>>Galter Health Sciences Library
>>>Feinberg School of Medicine, Northwestern University
>>>303 East Chicago Avenue
>>>Chicago, Illinois 60611-3008
>>>
>>>(312) 503-9351
>>>FAX (312) 503-1204
>>>pasiphae@northwestern.edu
>
>Susan Wishnetsky
>Electronic Resources Librarian
>Galter Health Sciences Library
>Feinberg School of Medicine, Northwestern University
>303 East Chicago Avenue
>Chicago, Illinois 60611-3008
>
>(312) 503-9351
>FAX (312) 503-1204
>pasiphae@northwestern.edu
>

---------------------------------
Martha Coleman
Reference/Serials Librarian
U A Fort Smith - Boreham Library
5210 Grand Avenue   PO Box 3649
Fort Smith,  AR  72913
479-788-7208     FAX 479-788-7209
mcoleman@uafortsmith.edu