Difference between revisions of "BenSelect:Admin:ChangePassword:Overview"

From Selerix
Jump to: navigation, search
(Authorization App Setup)
Line 25: Line 25:
  
  
==Authorization App Setup==
+
===Authorization App Setup===
 
Two key authentication is a way to add an additional layer of security to your log in credentials.  Instead of using just one step (a password, you have a second step that requires a secure random password generator.  Any one-time password (OTP) application will work for this, but the one most typically used is the Google Authenticator, which is available on your mobile device app store.  While two key authentication isn’t a requirement at this time, it is recommended.
 
Two key authentication is a way to add an additional layer of security to your log in credentials.  Instead of using just one step (a password, you have a second step that requires a secure random password generator.  Any one-time password (OTP) application will work for this, but the one most typically used is the Google Authenticator, which is available on your mobile device app store.  While two key authentication isn’t a requirement at this time, it is recommended.
  
To review your settings for this feature and turn it on/off, you will need to navigate to the “Session” on the main menu ribbon of any case and select “My Password” from the drop down.  On this screen, you can update your security questions, change password, and enable two key authentication.  The default for “2 Key Authentication” is disabled.  You can click the blue box next to it to enable it.
+
To review your settings for this feature and turn it on/off, you will need to navigate to the “Session” on the main menu ribbon of any case and select “My Profile” from the drop down.  On this screen, you can update your security questions, change password, and enable two key authentication.  The default for “Authorization App Setup” is disabled.  You can click the blue box next to it to enable it.
 
 
When you click the Enable button, a barcode/Qcode will appear on the screen.  It is very important you immediately capture this code using the Google Authenticator or other app of your choosing.  The app will use your phone’s camera to capture the code and then will produce random secure keys every 30 seconds.  The key will be the second layer of security.  After you log in with your username and password, it will ask for a OTP.  That is the numerical key provided by the authenticator. 
 
 
 
Before you move forward, you must confirm the app has the correct information to work with the system.  There is a box for “Code” that is asking for one of the keys the app will produce.  Enter the code and click Verify.  If it is successful, you are good to go and now have extra security related to your credentials.  Update anything else that needs to be updated on the page and click the “Update” button on the bottom left.
 
 
 
 
 
''If you fail to capture the barcode, the authenticator won’t be able to produce login keys for you.  If you delete the OTP app you are using it will not store this information.  Without this, you will be effectively locked out of your own account permanently.  Selerix Support can’t remove the security if you do this and you will need new user credentials.  Keep this in mind if you change devices.  Consider turning off the two step authentication temporarily until you get the new device and download the OTP app again.''
 
 
At this point, you are done setting up the two key authentication.  The next time you log into the site, you will enter your username and password and then will be prompted to enter a code from the authenticator app on your phone.  Once you successfully enter the code, you will be able to navigate the case as normal.
 
 
 
If you later choose to disable this 2 Key Authentication you can go back to the “My Password” screen and click the blue button that says “Cancel” next to “2 Key Authentication".  After you apply the update option, this setting will be saved.  If you turn off 2 Key Authentication, the next time you log in the only requirement will be user name and password.
 

Revision as of 21:50, 29 January 2021

My Profile

The My Profile screen allows you to update your view information about your user account on the current BenSelect site. The screen is organized into two sections: Contact Information and Security Information.

Contact Information

Use this section to view/update a valid email address, mobile number, or both. These will be used for assistance logging in using two-factor authentication. After entering or changing an email or mobile number, the contact information will be verified through a code sent to you at the given email or number.

Security Information

This section provides access for you to change your password, update your security questions, and enable/disable two-factor authentication.

Your username and password uniquely identify you to the system. The system keeps track of the changes you make, so you should NEVER GIVE YOUR USERNAME AND PASSWORD TO ANOTHER PERSON.

Change My Password

Click this link to open a dialog box allowing you to change your password. Enter your current password, and a new password.

The system enforces the following password rules:

  • Passwords expire after 90 days. The system will remind you starting 10 days before the password expires.
  • Passwords must be at least 8 characters in length.
  • Passwords must contain both letters and numbers.
  • Passwords must have both uppercase and lowercase letters.
  • You may not reuse the last 16 passwords you have used before.
  • If your password expires, you will not be allowed to do anything unless you first change your password.

Update Security Questions

Click this link to open a dialog box allowing you to update your security questions. These questions will be used to authenticate you as the correct user, when requesting a password update.


Authorization App Setup

Two key authentication is a way to add an additional layer of security to your log in credentials. Instead of using just one step (a password, you have a second step that requires a secure random password generator. Any one-time password (OTP) application will work for this, but the one most typically used is the Google Authenticator, which is available on your mobile device app store. While two key authentication isn’t a requirement at this time, it is recommended.

To review your settings for this feature and turn it on/off, you will need to navigate to the “Session” on the main menu ribbon of any case and select “My Profile” from the drop down. On this screen, you can update your security questions, change password, and enable two key authentication. The default for “Authorization App Setup” is disabled. You can click the blue box next to it to enable it.

Retrieved from "https://wiki.selerix.com/index.php?title=BenSelect:Admin:ChangePassword:Overview&oldid=769"