Instead of paying (multiple?) contract companies to handle password resets for the multiple systems we work with (e.g. govtrip, BASIS+, agency network, Lotus notes email), establish a secure website that requires our employee ID cards (smart card) and associated PIN where we can go to remind us what our password is -or to request an automatic reset, which would be the former password with a random number added at the end. If the reset approach is used, the updated password would be sent to gov email. And please standardize the username for all gov systems. Currently, there is one userid that seems to be used most often, but at least 2 systems use a variation on that.