Versions Compared

Old Version 30

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version 31

changes.mady.by.user trscavo@internet2.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Wiki Markup
h2. Password Reset for Site Administrators

{div:style=float:right;margin-left:2em;margin-bottom:1ex}{note}
[Reset My Login Password|https://service1.internet2.edu/siteadmin/password_reset] *now*\!
(or [watch a flash video demo|http://www.incommon.org/video/pw_reset/])
{note}{div}

InCommon Operations supports automated _two-factor password reset_ for site administrators. The first factor involves an email account (“something you know”) while the second factor involves a phone (“something you have”). Watch a [video demo|http://www.incommon.org/video/pw_reset/] of two-factor password reset in action.

In the future, InCommon will also require _two-factor authentication_ on your login account itself. Together, two-factor authentication and two-factor password reset make it very difficult for a bad guy to gain control of your login credentials.

{info}Two-factor password reset and two-factor authentication are being deployed in phases. Two-factor password reset is available now. Two-factor authentication will be available early in 2013.{info}

As a new site administrator, InCommon Operations verified your email address and your phone number, both of which were obtained from your Executive when your organization joined InCommon. This information is used for the purposes of two-factor password reset as well. It is all you need to reset your password.

{tip}
If your verified email address or verified phone number changes, talk to your Executive. Only your InCommon Executive may change your contact information.
{tip}

To *reset your login password*, sit at your verified phone location and follow these steps:

# To begin the password reset process, click the link in the upper righthand corner of this document.
# Perform two-step [identity verification|InCCollaborate:Identity Verification]:
## *Request an email invitation* by entering your email address at the prompt and pressing the button. (screen shot)
## *Click the link in the email* to launch a secure landing page in a browser window. (screen shot)
## *Request an one-time PIN* by pressing a button that sends a PIN via an automated voice message to your phone number. (screen shot)
## *Verify the one-time PIN* by entering it on the web page and pressing the button. (screen shot)
# Create a new password: (screen shot)
## *Enter a new password* at the prompt
## *Confirm the new password* at the second prompt
## *Submit the new password* by pressing a button

That's it! You are now ready to log into the [InCCollaborate:Federation Manager].

Please report any problems or make suggestions for improvement by contacting admin at incommon dot org

h3. Password Policy

Currently, every site administrator is issued a strong password for authentication purposes. If you forget or lose your login password, you can reset it yourself using the above automated process. If you are unable to reset your password for any reason, please contact us at admin at incommon dot org.

The level of assurance associated with your email password is unknown and so we have the following policy regarding your login password:

{warning:title=InCommon Operations Password Policy}
* Your login password SHOULD be different than your email password.
{warning}

{attachments}