Assuming the user registration is a single page, depending on the expertise of your developers, it will take (approximately) one developer between a week and a month to build a registrations system. If the system is built in Java, the developer should be skilled in HTML and JSP, and have Java or .NET experience. If the system is designed in object-oriented (OO) languages like Java and .NET, it would be beneficial to have OO design skills.
Since the form will have to call your database for verification purposes, the code that sits on your application server will need code to connect to -- and read from -- those back-end databases. Both Java and .NET are capable of this, and any language proficient developer shouldn't have trouble writing this code.
At a bare minimum, the form should have enough data to verify legitimate users and prevent insider threats or hacker attempts. For example, include the following data in your form:
- The employee's full first and last name and title.
- The employee's phone number.
- An internal ID number for the employee other than their Social Security Number.
- The name of the employee's department.
- The location of the employee – cube number or some internal building address.
- The name of the employee's supervisor.
This list is far from exhaustive and is merely a preliminary guideline to help you get started.
Remember, all forms should contain code that logs and time stamps all submissions for auditing later, in case of hacking attempts or other intentional misuse.
Finally, be sure to add code that validates completion of the form, or that the user isn't entering malicious information. Forms with blank fields or with nonsensical entries should be discarded. Most importantly, forms should log all hacking attempts to prevent tampering – whether by employees or outsiders – up to no good.
Dig Deeper on Privileged access management
Related Q&A from Joel Dubin
Ensuring authenticity of online communications is critical to conduct business. Learn how to use a public key and private key in digital signatures ... Continue Reading
Learn about the purpose of CAPTCHA challenges that enable websites to differentiate bots from authentic users to stop spammers from hijacking forums ... Continue Reading
Proper planning is at the top of the list for single sign-on best practices, but it's important to get enterprise SSO implementations off to a good ... Continue Reading