Flexible Identity. Tokenless authenticators guide. Multi-Factor Authentication. version 1.0
|
|
- Richard Flynn
- 8 years ago
- Views:
Transcription
1 Flexible Identity Multi-Factor Authentication Tokenless authenticators guide version 1.0
2 Publication History Date Description Revision initial release 1.0 Copyright Orange Business Services 2 of 26
3 welcome Your company has chosen Orange Business Services Flexible Identity Multi-Factor Authentication service (aka FI-MFA) to help you protect your on-line identity and the networks, applications and data you use from unauthorized access. The information in this guide applies to the following tokenless authenticators: GrIDsure SMS Password The information in this guide is intended for: end-users: people in your company that will use the FI-MFA service. operators: people in your company that will manage your FI-MFA end-users. administrators: people in your company that will manage the FI-MFA service. You can click one of the following icons for direct access to your tokenless authenticator: GrIDsure SMS Password Copyright Orange Business Services 3 of 26
4 contents GrIDsure overview... 7 what is a GrIDsure token?... 7 why use a GrIDsure token?... 7 how does a GrIDsure token protect me?... 7 what additional security features does my GrIDsure token offer?... 7 what is the difference between PIP characters and an OTP?... 8 how does a GrIDsure token work?... 8 what are the characteristics of my GrIDsure token?... 9 what is self-enrollment?... 9 how do I self-enroll my GrIDsure token?... 9 how long will my GrIDsure token continue to operate?... 9 what if I have not received the self-enrollment notification?... 9 what is the Self-Service Portal?... 9 why I can t logon using my GrIDsure token?... 9 I entered an incorrect OTP... 9 my user account is locked my GrIDsure token has been suspended or revoked what are my responsibilities? how should I protect my PIN/PIP? how can I change my PIN/PIP? what if I forget my PIN/PIP? GrIDsure introduction enrolling GrIDsure token authenticating with a GrIDsure token Self-Service Portal for GrIDsure accessing the Self-Service Portal Web site resetting a GrIDsure token PIN resetting a GrIDsure token PIP Copyright Orange Business Services 4 of 26
5 sending temporary sign-in password by /sms SMS overview what is a SMS token? why use a SMS token? how does a SMS token protect me? what additional security features does my SMS token offer? what is the difference between a token code and an OTP? what are the characteristics of my SMS token? operation modes how long will my OTP token continue to operate? what is the Self-Service Portal? why I can t logon using my SMS token? I entered an incorrect OTP my user account is locked my SMS token has been suspended or revoked what are my responsibilities? where should I store my SMS token? what if I forget my SMS token? what if I lose my SMS token? how should I protect my PIN? how can I change my PIN? what if I forget my PIN? SMS Introduction authenticating with a SMS token Self-Service Portal for SMS accessing the Self-Service Portal resetting a SMS token PIN resending SMS sending temporary sign-in password by /sms Password overview Copyright Orange Business Services 5 of 26
6 what is a Password token? what are the characteristics of my Password token? what is self-enrollment? how do I self-enroll my Password token? how long will my Password token continue to operate? what if I have not received the self-enrollment notification? what is the Self-Service Portal? why I can t logon using my Password? I entered an incorrect Password my user account is locked my Password token has been suspended or revoked what are my responsibilities? how should I protect my Password? how can I change my Password? what if I forget my Password? Password introduction enrolling Password token authenticating with a Password Copyright Orange Business Services 6 of 26
7 GrIDsure overview If you are already comfortable with FI-MFA terminologies and GrIDsure authenticator, you can click here for direct access to instructions. what is a GrIDsure token? A GrIDsure token allows you to generate OTPs one-time passwords each time you log into your organization s resources, without any additional hardware or software applications. The advantage of GrIDsure token is mass deployment without hardware distribution. With our Secure Authentication service, GrIDsure Tokens can be issued, revoked and reissued without restriction or the need to recover something from the end-user. why use a GrIDsure token? Until now, you have probably logged into your organization s resources with your user name and a fixed password. The problem is that passwords are easily compromised, putting your identity and the resources you access at risk. A GrIDsure token allows you to generated and use One-Time Passwords (aka OTPs) each time you log into your organization s resources. As the name implies, an OTP can be used only one time. Each time you log in, you use your GrIDsure token to generate a unique OTP. how does a GrIDsure token protect me? Password theft is a common method that thieves and hackers use to steal identities and gain unauthorized access to networks and resources. Success depends on the stolen password being valid, in the same way that credit card theft relies on the card being usable until it is reported as stolen. Discovering the compromise is almost impossible until damage has been done. Using a GrIDsure token solves this problem, because once you have logged in using an OTP, that password is no longer valid. Any attempt to log in by reusing the OTP will fail, and it will alert your network security professionals to a possible attack on your identity. what additional security features does my GrIDsure token offer? Depending on your organization s policies, your GrIDsure token may be protected against unauthorized use by a Security PIN (aka PIN) that is known only to you. Like a bank card, a thief not only needs access to your GrIDsure token, but must know your PIN as well. Do not share your PIN with others. FI-MFA GrIDsure tokens support server-side PIN (stored on the FI- MFA server). Copyright Orange Business Services 7 of 26
8 what is the difference between PIP characters and an OTP? The OTP value depends on the PIN protection of your GrIDsure token: no PIN-protection: PIP characters form the OTP. server-side PIN-protection: depending on your organization s policies, you need to enter your PIN either before or after the PIP characters code to form the OTP. how does a GrIDsure token work? During self-enrollment step (refer to the related chapter is this section for details), a grid of cells containing random characters is displayed to you. As shapes and patterns are remembered more simply than words and numbers, GrIDsure involves you to remember a sequence of cells in a pattern on the grid that is easily recognizable to you. You choose your Personal Identification Pattern (aka PIP) from the arrangement and sequence of the cells from the grid: When you are required to authenticate securely to a protected network resource, you select the characters that match your PIP from the unique characters shown to you by the grid: In this example, your PIP would be a value of: This is seen in the highlighted cells above. Therefore to authenticate, you would enter 5582 as your one-time password value. The next time you need to authenticate, the characters displayed by the grid will be different, but the PIP remains the same. You just need to enter the new characters in your PIP displayed by the grid. Copyright Orange Business Services 8 of 26
9 what are the characteristics of my GrIDsure token? The characteristics of your GrIDsure token are defined by your organization and applied when your GrIDsure token is initialized. Grid size: may be 5x5, 6x6 or 7x7. Trivial PIP: diagonal line, straight line, or the four corners of the grid (may be allowed or denied). what is self-enrollment? Self-enrollment is a simple process during which you activate your GrIDsure token. During the process, you may be required to enter or create a PIN. When you complete the self-enrollment process, you will be able to use your GrIDsure token to generate token codes for login. how do I self-enroll my GrIDsure token? The self-enrollment process begins when you receive your self-enrollment notification. The contains instructions and your enrollment URL. how long will my GrIDsure token continue to operate? Your GrIDsure token will be able to generate OTPs until it is revoked by your IT administrator. what if I have not received the self-enrollment notification? If you have not received a self-enrollment notification, please contact your IT administrator to arrange for a new to be sent to you. what is the Self-Service Portal? The Self-Service Portal is a Web site created to empower you to perform simple authentication management functions (the range of available functions depends on your organization s policies) and in the process, reduce the workload and your reliance on the help desk. The self-enrollment notification contains the URL to access your Self-Service Portal. why I can t logon using my GrIDsure token? They may be several causes of failed login. I entered an incorrect OTP This is the most common cause. To avoid this, ensure that: Caps lock mode is disabled on your keyboard. you enter right characters and keystrokes. Copyright Orange Business Services 9 of 26
10 your OTP is correctly formed (in accordance with the PIN protection type of your GrIDsure token). my user account is locked You exceeded the maximum number of consecutive failed logon attempts. You must wait the amount of time defined by your organization before your user account will unlock. my GrIDsure token has been suspended or revoked Please contact your IT administrator. what are my responsibilities? Using your GrIDsure token provides strong security, and simplifies your work efforts by reducing or eliminating the need to remember or periodically change passwords. As an additional measure, Orange recommends that you observe the following tips to ensure the highest level of security. how should I protect my PIN/PIP? Protect them just as you would the PIN for your bank or credit card. Never share it with anybody, including people you trust. This includes your colleagues and systems administrators at your company and personnel who are, or claim to be representatives of Orange or a Partner of Orange. You should be extremely suspicious of anyone who ever tells you at they need to know your PIN/PIP, and you should report any such incident to your IT administrator immediately. Never write down your PIN/PIP. how can I change my PIN/PIP? If you wish to change your PIN/PIP, or if you are concerned that it has been compromised, use the Reset PIN / Reset PIP function of your FI-MFA Self-Service Portal, or contact your IT administrator if these functions were not enabled by your organization s policies. what if I forget my PIN/PIP? If you forget your PIN/PIP, use the Send sign-in password by /sms function of your Self-Service Portal or contact your IT administrator if this function was not enabled by your organization s policies. Copyright Orange Business Services 10 of 26
11 GrIDsure introduction GrIDsure users can generate OTPs without any additional hardware or software applications, and use them to authenticate to FI-MFA-protected applications and resources. enrolling GrIDsure token Step 1: you have or will receive a Self-enrollment notification. Open it, click the selfenrollment Web site link (beginning with and then switch to your Web browser to start the self-enrollment process. Step 2: choose your PIP using the grid, enter the characters that match your PIP in the Enter Value case-sensitive field (depending on your organization s policies, you may need to memorize the displayed PIN), and then click the Next button. If successful, the following page is displayed: Copyright Orange Business Services 11 of 26
12 Step 3: memorize your User ID before closing your Web browser. Your GrIDsure token is now active and able to generate OTPs. authenticating with a GrIDsure token You have the ability to authenticate with your GrIDsure Token only against systems that support GrIDsure (such as your Self-Service Portal described below). Step 1: open the Self-enrollment notification you previously received, click the FI-MFA Self-Service Portal link (beginning with and then switch to your Web browser to display the homepage. Click the Sign In button, and then the Sign in using your token button. Step 2: enter your User ID and then click the OK button without entering any value in the OTP field to display the grid. Enter the characters that match your PIP in the OTP field (depending on your organization s policies, you may need to enter your PIN before the characters that match your PIP), and then click the OK button. Step 3: if successful, the homepage of your Self-Service Portal is displayed again, but the Sign In button has been replaced by the Sign Out one. Copyright Orange Business Services 12 of 26
13 Self-Service Portal for GrIDsure accessing the Self-Service Portal Web site Open the Self-enrollment notification you previously received, click the Self-Service Portal link (beginning with and then switch to your Web browser to display the homepage. resetting a GrIDsure token PIN Step 1: from the Self-Service Portal homepage, click the Reset PIN icon, the Sign in using your token button, and then authenticate against your Self-Service Portal. If successful, the Create New PIN page is displayed. Step 2: enter your new PIN, you are required to re-enter it for verification purposes, and then click the OK button. Step 3: if successful, the Your Security PIN has been successfully reset. message is displayed. Click the Sign Out before closing your browser. Copyright Orange Business Services 13 of 26
14 resetting a GrIDsure token PIP Step 1: from the Self-Service Portal homepage, click the Reset PIP icon, the Sign in using your token button, and then authenticate against your Self-Service Portal. If successful, the Select Pattern page is displayed. Step 2: choose your new PIP using the grid, enter the characters that match your PIP in the Enter cell values case-sensitive field, and click the OK button. Step 3: if successful, the Your PIP was successful. message is displayed. Click the Sign Out before closing your browser. sending temporary sign-in password by /sms This temporary sign-in password is only for authentication against the Self-Service Portal (useful to reset a forgotten PIN/PIP) and is valid during 10 minutes. Step 1: from the Self-Service Portal homepage, click the Sign In button, the Send Sign in password by (or Send Sign in password by SMS ), enter your User ID, and then click the Send button. Step 2: you have or will receive a Self-service Temporary Sign In Password notification (or SMS) including your temporary sign-in password. Step 3: from the Self-Service Portal homepage, click the Sign In button, the Sign in using your token button, and then authenticate using your temporary sign-in password as OTP. Copyright Orange Business Services 14 of 26
15 SMS overview If you are already comfortable with FI-MFA terminologies and SMS authenticator, you can click here for direct access to instructions. what is a SMS token? FI-MFA supports sending token codes to mobile phones via SMS messages. This allows the user to use their phone as a SMS token without requiring any additional software on the phone. why use a SMS token? Until now, you have probably logged into your organization s resources with your user name and a fixed password. The problem is that passwords are easily compromised, putting your identity and the resources you access at risk. A SMS token allows you to generate and use One-Time Passwords (aka OTPs) each time you log into your organization s resources. As the name implies, an OTP can be used only one time. how does a SMS token protect me? Password theft is a common method that thieves and hackers use to steal identities and gain unauthorized access to networks and resources. Success depends on the stolen password being valid, in the same way that credit card theft relies on the card being usable until it is reported as stolen. Discovering the compromise is almost impossible until damage has been done. Using a SMS token solves this problem, because once you have logged in using an OTP, that password is no longer valid. Any attempt to log in by reusing the OTP will fail, and it will alert your network security professionals to a possible attack on your identity. what additional security features does my SMS token offer? Depending on your organization s policies, your SMS token may be protected against unauthorized use by a Security PIN (aka PIN) that is known only to you. Like a bank card, a thief not only needs access to your SMS token, but must know your PIN as well. Do not share your PIN with others. FI-MFA SMS tokens support server-side PIN (stored on the FI-MFA server). what is the difference between a token code and an OTP? The OTP value depends on the PIN protection of your SMS token: no PIN-protection: the token code forms the OTP. Copyright Orange Business Services 15 of 26
16 server-side PIN-protection: depending on your organization s policies, you need to enter your PIN either before or after the token code to form the OTP. Copyright Orange Business Services 16 of 26
17 what are the characteristics of my SMS token? The characteristics of your SMS token are defined by your organization and applied when your SMS token is initialized. operation modes SMS No Waiting: a user attempts to authenticate using their user name and SMS OTP. After successfully authenticating, the user then received their next token code. The advantage is that a user always has a valid token code (which cannot be used without their PIN) on their phone. This method most closely mimics a traditional logon. No Waiting Plus: this mode is very similar to SMS No Waiting, except that it will send up to 5 token codes in each SMS message. This is ideal for users that are frequently in areas with sporadic or unreliable SMS delivery because they are not dependent on the SMS service until all token codes have been consumed. The following diagram describes SMS No Waiting/No Waiting Plus modes: SMS challenge-response: a user attempts to authenticate using only their user name (blank password). FI-MFA server immediately sends the user a token code to be used. User then uses their OTP to authenticate. The following diagram describes SMS challenge-response modes Copyright Orange Business Services 17 of 26
18 how long will my OTP token continue to operate? FI-MFA SMS tokens will be able to generate OTPs until it is revoked by your IT administrator. what is the Self-Service Portal? The Self-Service Portal is a Web site created to empower you to perform simple authentication management functions (the range of available functions depends on your organization s policies) and in the process, reduce the workload and your reliance on the help desk. The self-enrollment notification contains the URL to access your Self-Service Portal. why I can t logon using my SMS token? They may be several causes of failed login. I entered an incorrect OTP This is the most common cause. To avoid this, ensure that: Caps lock mode is disabled on your keyboard. you enter right characters and keystrokes. your OTP is correctly formed (in accordance with the PIN protection type of your OTP token). my user account is locked You exceeded the maximum number of consecutive failed logon attempts. You must wait the amount of time defined by your organization before your user account will unlock. my SMS token has been suspended or revoked Please contact your IT administrator. what are my responsibilities? Using your SMS token provides strong security, and simplifies your work efforts by reducing or eliminating the need to remember or periodically change passwords. As an additional measure, Orange recommends that you observe the following tips to ensure the highest level of security. where should I store my SMS token? You should keep your token separate from your computer. Do not leave it on your desk, or with your computer bag. Treat it as you would your wallet, purse, or credit cards, and keep it with you at all times. Copyright Orange Business Services 18 of 26
19 what if I forget my SMS token? Your OTP token is a primary security device designed to protect you and the resources you access. Keep it with your car keys or purse or other valuable items that you use on a regular basis to minimize the potential to forget it. If you do forget your OTP token, contact your IT administrator. what if I lose my SMS token? If you lose your token, report it immediately to your IT administrator: he will take the necessary actions to ensure the lost token does not present a security risk. Depending on your organization s policies, he will provide you with a temporary alternative for logging into the network until you receive a replacement token. how should I protect my PIN? If you have a PIN, protect it just as you would the PIN for your bank or credit card. Never share it with anybody, including people you trust. This includes your colleagues and systems administrators at your company and personnel who are, or claim to be representatives of Orange or a Partner of Orange. You should be extremely suspicious of anyone who ever tells you at they need to know your PIN, and you should report any such incident to your IT administrator immediately. Never write down your PIN. how can I change my PIN? If you wish to change your PIN, or if you are concerned that it has been compromised, use the Reset PIN function of your Self-Service Portal, or contact your IT administrator if this function was not enabled by your organization s policies. what if I forget my PIN? If you forget your PIN, use the Send sign-in password by /sms function of your Self- Service Portal or contact your IT administrator if this function was not enabled by your organization s policies. Copyright Orange Business Services 19 of 26
20 SMS Introduction FI-MFA supports sending token codes to mobile phones via SMS messages. This allows the user to use their phone as a hardware token without requiring any additional software on the phone. authenticating with a SMS token You have the ability to authenticate with your SMS token against any systems that require a logon password. Enter your User ID and the SMS token code as password (depending on your organization s policies, you may need to enter your PIN either before or after the token code). Self-Service Portal for SMS accessing the Self-Service Portal Contact your IT administrator to know which URL to use (beginning with to connect to the Self-Service Portal. resetting a SMS token PIN Step 1: from the Self-Service Portal homepage, click the Reset PIN icon, the Sign in using your token button, and then authenticate against your Self-Service Portal. If successful, the Create New PIN page is displayed. Copyright Orange Business Services 20 of 26
21 Step 2: enter your new PIN (you are required to re-enter it for verification purposes), and then click the OK button. Step 3: if successful, the Your Security PIN has been successfully reset. message is displayed. Click the Sign Out button before closing your browser. resending SMS If published by your organization, this function allows you to request an SMS/OTP resend to your registered mobile device. sending temporary sign-in password by /sms This temporary sign-in password is only for authentication against the Self-Service Portal (useful to reset a forgotten PIN) and is valid during 10 minutes. Step 1: from the Self-Service Portal homepage, click the Sign In button, the Send Sign in password by (or Send Sign in password by SMS ), enter your User ID, and then click the Send button. Step 2: you have or will receive a Self-service Temporary Sign In Password notification (or SMS) including your temporary sign-in password. Step 3: from the Self-Service Portal homepage, click the Sign In button, the Sign in using your token button, and then authenticate using your temporary sign-in password as OTP. Copyright Orange Business Services 21 of 26
22 Password overview If you are already comfortable with FI-MFA terminologies and Password authenticator, you can click here for direct access to instructions. what is a Password token? A Password token allows you use Single-factor authentication (SFA) each time you log into your organization s resources. Single-factor authentication (SFA) is the traditional security process that requires a user name and password before granting access to the user. what are the characteristics of my Password token? The characteristics of your Password token are defined by your organization and applied when your Password token is initialized. Change frequency: from 0 (never) to 365 days. Maximum lifetime: up to 99 minutes, hours, days or weeks (this characteristic may be disabled for unlimited lifetime). what is self-enrollment? Self-enrollment is a simple process during which you activate your Password token. When you complete the self-enrollment process, you will be able to use your Password each time you log into your organization s resources. how do I self-enroll my Password token? The self-enrollment process begins when you receive your self-enrollment notification. The contains instructions and your enrollment URL. how long will my Password token continue to operate? Your Password token will continue to operate until it is revoked by your IT administrator. what if I have not received the self-enrollment notification? If you have not received a self-enrollment notification, please contact your IT administrator to arrange for a new to be sent to you. what is the Self-Service Portal? The Self-Service Portal is a Web site created to empower you to perform simple authentication management functions (the range of available functions depends on your organization s policies) and in the process, reduce the workload and your reliance on the help desk. Copyright Orange Business Services 22 of 26
23 The self-enrollment notification contains the URL to access your Self-Service Portal. Copyright Orange Business Services 23 of 26
24 why I can t logon using my Password? They may be several causes of failed login. I entered an incorrect Password This is the most common cause. To avoid this, ensure that: Caps lock mode is disabled on your keyboard. you enter right characters and keystrokes. my user account is locked You exceeded the maximum number of consecutive failed logon attempts. You must wait the amount of time defined by your organization before your user account will unlock. my Password token has been suspended or revoked Please contact your IT administrator. what are my responsibilities? Using your GrIDsure token provides strong security, and simplifies your work efforts by reducing or eliminating the need to remember or periodically change passwords. As an additional measure, Orange recommends that you observe the following tips to ensure the highest level of security. how should I protect my Password? Protect them just as you would the PIN for your bank or credit card. Never share it with anybody, including people you trust. This includes your colleagues and systems administrators at your company and personnel who are, or claim to be representatives of Orange or a Partner of Orange. You should be extremely suspicious of anyone who ever tells you at they need to know your Password, and you should report any such incident to your IT administrator immediately. Never write down your Password. how can I change my Password? If you wish to change your Password, or if you are concerned that it has been compromised, contact your IT administrator. Upon verifying your identity, he will give you a temporary Password. The next time you log in, you will be required to change it to one known only by you. what if I forget my Password? Use the same method as the change of Password. Copyright Orange Business Services 24 of 26
25 Password introduction Password users can use Single-factor authentication (SFA) to authenticate to FI-MFA-protected applications and resources. enrolling Password token Step 1: you have or will receive a FI-MFA self-enrollment notification. Open it, click the self-enrollment Web site link (beginning with and then switch to your Web browser to start the self-enrollment process. Step 2: enter your Password in both Enter Password and Confirm Password, and then click the Next button. If successful, the following page is displayed: Step 3: memorize your User ID before closing your Web browser. Your Password token is now active and allows you to use Single-factor authentication. Copyright Orange Business Services 25 of 26
26 authenticating with a Password You have the ability to authenticate with your Password against any systems that support SFA (such as your Self-Service Portal described below). Step 1: open the FI-MFA Self-enrollment notification you previously received, click the FI-MFA self-service portal Web site link (beginning with and then switch to your Web browser to display the homepage. Click the Sign In button, and then the Sign in using your token button. Step 2: enter your User ID, your Password in the OTP field and then click the OK button. Step 3: if successful, the homepage of your Self-Service Portal is displayed again, but the Sign In button has been replaced by the Sign Out one. Copyright Orange Business Services 26 of 26
Flexible Identity. OTP software tokens guide. Multi-Factor Authentication. version 1.0
Flexible Identity Multi-Factor Authentication OTP software tokens guide version 1.0 Publication History Date Description Revision 2014.02.07 initial release 1.0 Copyright Orange Business Services 2 of
More informationWelcome Guide for MP-1 Token for Microsoft Windows
Welcome Guide for MP-1 Token for Microsoft Windows Protecting Your On-line Identity Authentication Service Delivery Made EASY Copyright 2012 SafeNet, Inc. All rights reserved. All attempts have been made
More informationBlackShield Authentication Service
BlackShield Authentication Service Guide for Users of CRYPTOCard MP-1 Software Tokens on Smart Phones Protecting Your On-line Identity Authentication Service Delivery Made EASY Copyright Copyright 2011.
More informationUser Guide. SafeNet MobilePASS for Windows Phone
SafeNet MobilePASS for Windows Phone User Guide Technical Manual Template Release 1.0, PN: 000-000000-000, Rev. A, March 2013, Copyright 2013 SafeNet, Inc. All rights reserved. 1 Document Information Product
More informationMulti-Factor Authentication (MFA)
The Multi-Factor Authentication (MFA) solution for Inter@ct Statements and Notices has been redesigned and enhanced; customers who directly access the Inter@ct Statements and Notices application to log
More informationSetting up CU@Round On line Account
Setting up CU@Round On line Account Created Date: October 6, 2009 Purpose: This document is a step by step process on how to set up a member s CU@Round online account. Note: The member will need the following
More informationPAHO Self-Service Password Management Quick Reference Guide December 2014
PAHO Self-Service Password Management Quick Reference Guide December 2014 Information Technology Services (ITS) PAHO Network Password Management and Recovery Using ADSelfService Quick Reference Guide NOTE:
More informationReset Virtual Gateway Password Job Aid
Summary of Job Aid In order to access a Virtual Gateway s business service, you must first log on to the Virtual Gateway (VG). From the Virtual Gateway s website (www.mass.gov/vg), click Logon to Virtual
More informationBusiness Banking Customer Login Experience for Enhanced Login Security
Business Banking Customer Login Experience for Enhanced Login Security User credentials uniquely identify each person who uses the banking platform. The intent of authentication is unequivocal verification
More informationInstructions for the Integrated Travel Manager (ITM) Self Service Password Reset (May 2011)
How to Complete the Challenge Questions and Responses Setup Process 1a 1b Open an Internet Explorer window Point your browser to: https://itm-prod.rdc.noaa.gov/cgibin/90ipi/docprep/login.w If the Web Security
More informationNetIQ Advanced Authentication Framework - Smartphone Applications
NetIQ Advanced Authentication Framework - Smartphone Applications User Guide Version 3.0 1 Table of Contents 1 Table of Contents 2 Introduction 3 About This Document 3 System Requirements 4 Install Smartphone
More informationAccessing Derbyshire County Council s Outlook Web Access (OWA) Service. Mobile Phone SMS version
Accessing Derbyshire County Council s Outlook Web Access (OWA) Service Mobile Phone SMS version Contents About this guide... 2 Before accessing Outlook Web Access (OWA)... 3 Accessing Outlook Web Access
More informationMonash Health Self Service
Monash Health Self Service Table of Contents Monash Health Self Service Password Reset \ Account Unlock via a Non-Monash Workstation... 2 Monash Health Self Service Password Reset \ Account Unlock via
More informationThese additional levels of security are NOT required if you are using a Derbyshire County Council machine on council premises.
This guide is intended for Derbyshire County Council employees, partners and suppliers who need remote access to the Council s network. This would be primarily from locations not directly on Council property,
More informationNew Brunswick Internal Services Agency. RSA Self-Service Console User Guide
New Brunswick Internal Services Agency RSA Self-Service Console User Guide Version: 1.0 Created: November 27, 2013 Modified: November 27, 2013 Table of Contents Introduction...1 Logging on to the RSA Self-Service
More informationMCBDirect Corporate Logging on using a Soft Token
MCBDirect Corporate Logging on using a Soft Token Document issue: 2.1 Date of issue: September 2014 Contents About Soft Token authentication... 3 Logging onto MCBDirect Corporate online banking... 4 Soft
More informationThe Initial Registration Process. During the initial registration process, this guide assumes the user has been provided a login ID.
eopf Account Guide The following processes are covered in this guide: Initial Registration Process (for new users) Forgotten Password Process Forgotten Login ID Process The Initial Registration Process
More informationGuide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication
Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication This document serves as a How To reference guide for employees to execute the following MFA tasks: 1.
More informationPrimeSecure Self-Service User Guide Revision 1.2
PrimeSecure Self-Service User Guide Revision 1.2 1 Table of Contents 1.0 Introduction... 3 2.0 Register with PrimeSecure... 3 3.0 Changing your Password... 6 4.0 Resetting your Password... 8 5.0 Updating
More informationRiver Valley Credit Union Online Banking
River Valley Credit Union Online Banking New user setup guide Members can self enroll for the service by answering a few simple questions. Before beginning the process, please make sure you have this information
More informationBusiness ebanking - User Sign On & Set Up
About Sign On Business ebanking has two authentication methods that reduce the risk of online identity theft: secure token authentication and out-of-band authentication. The authentication method companies
More informationa. StarToken controls the loss due to you losing your Internet banking username and password.
1. What is StarToken? StarToken is the next generation Internet banking security solution that is being offered by Bank of India to all its Internet Banking customers (Retail as well as Corporate). StarToken
More informationNASDAQ Web Security Entitlement Installation Guide November 13, 2007
November 13, 2007 Table of Contents: Copyright 2006, The Nasdaq Stock Market, Inc. All rights reserved.... 2 Chapter 1 - Entitlement Overview... 3 Hardware/Software Requirements...3 NASDAQ Workstation...3
More informationSecurity Upgrade FAQs
Security Upgrade FAQs Your online security is important to us. Soon, we ll be upgrading your online banking experience to include a new security service, which is known in the online security industry
More informationImplementation Guide for protecting
Implementation Guide for protecting Remote Web Workplace (RWW) Outlook Web Access (OWA) 2003 SharePoint 2003 IIS Web Sites with BlackShield ID Copyright 2010 CRYPTOCard Inc. http:// www.cryptocard.com
More informationProvider OnLine. Log-In Guide
Provider OnLine Log-In Guide Table of Contents 1 LOG-IN ACCESS... 3 1.1 ENTERING THE USER ID AND PASSWORD... 4 1.2 OVERVIEW AND PURPOSE OF TRICIPHER... 5 1.2.1 Log-in for Users Who Are Active, But Not
More informationProcess: Self Service
How Do I Login to the Online Vendor Self-Service Application? 1. Using the information provided in the email sent to the primary Contact: Navigate to the URL for the application, the PeopleSoft Sign In
More informationUsers Guide to Internet Banking Self Service Enrollment
Users Guide to Internet Banking Self Service Enrollment This document is a guide for customers who wish to use The Bank of Greene County s Self Service Enrollment Utility for Internet Banking The following
More informationOne-Time Password Contingency Access Process
Multi-Factor Authentication: One-Time Password Contingency Access Process Presenter: John Kotolski HRS Security Officer Topics Contingency Access Scenarios Requesting a Temporary One-Time Password Reporting
More informationFrequently asked questions.
Frequently asked questions. What is Bath Online? Bath Online is the online savings service from Bath Building Society that provides you with 24-hour access to view your existing savings accounts and the
More informationCollaborate.ets.org Password Setup & Recovery Guide. Table of Contents
MyPassword is a self-service password management tool. Collaborate.ets.org Password Setup & Recovery Guide https://mypassword.ets.org/ Table of Contents Create/Edit Your Profile (First time use)... I Change
More informationSikorsky Aircraft. Supplier Portal Password Activation Process. Revision H
Sikorsky Aircraft Supplier Portal Password Activation Process Revision H 1 Sikorsky Supplier Portal Background: The Sikorsky Supplier Portal replaces Sikorsky Aircraft s Supplier Resource Center. The Supplier
More informationDepartment of Supply & Services (CIMS) RSA Web Express User Guide v1.2
Department of Supply & Services (CIMS) RSA Web Express User Guide v1.2 Created: May 22, 2008 Updated: April 23, 2009 The RSA Web Express web express web site automates functions required to deploy hardware
More informationGuide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication. Mobile App Activation
Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication Mobile App Activation Before you can activate the mobile app you must download it. You can have up to
More informationEnhanced Security for Online Banking
Enhanced Security for Online Banking MidSouth Bank is focused on protecting your personal and account information at all times. As instances of internet fraud increase, it is no longer sufficient to use
More informationHow Secure is your Authentication Technology?
How Secure is your Authentication Technology? Compare the merits and vulnerabilities of 1.5 Factor Authentication technologies available on the market today White Paper Introduction A key feature of any
More informationWhen you are prompted to enroll, you will be asked to enter a Security Phrase and select/answer three different Challenge Questions.
IMPORTANT SECURITY INFORMATION We take your online security seriously. Your online banking site contains a security feature called Enhanced Authentication. Everyone will be required to enroll in Enhanced
More informationIntroduction to Strong Authentication
Introduction to Strong Authentication To provide safe and reliable access to MLS data, MLSListings Professional Edition includes a strong authentication feature to identify authorized users. Follow the
More informationNCID User Guide Version 1.8. Office of Information Technology Services As of July 26, 2011
NCID User Guide Version 1.8 Office of Information Technology Services As of July 26, 2011 Document History Version Change Reference Date Author 1.0 Initial draft release 9/16/10 Heather Ferrie Update w/
More informationTwo Factor Authentication. Software Version (SV) 1.0
Two Factor Authentication Software Version (SV) 1.0 Property of: Worldwide Interactive Services, Inc. 5025 South Orange Avenue Orlando, FL 32809 The data contained in this documentation is PROPRIETARY
More informationFAQs for Password Self Service
FAQs for Password Self Service Contents 1.1 What is PSS? 1.2 What do I do if I forget my Portal/POS or Network/Workstation password? 1.3 What do I do if my Portal/POS or Network/Workstation password has
More informationFAQ: UFS Password Self Service System
FAQ: UFS Password Self Service System ICT Services Document compiled by: ICT Services Servicedesk E mail: Servicedesk@ufs.ac.za 051 401 2752 Contents Question 1: How do I change my password?... 2 Question
More informationUser Guide for CDC s SAMS Partner Portal. Document Version 1.0
User Guide for CDC s SAMS Partner Portal Document Version 1.0 Introduction If you are reading this guide, it probably means that you have been (or will be) invited to register with the SAMS Partner Portal.
More informationManaging Your Network Password Using MyPassword
Managing Your Network Password Using MyPassword Your Otterbein network password allows you to log in to O-Zone, Blackboard, the OtterbeinU wireless network, and other network resources. Using MyPassword,
More informationHow to Use Remote Access Using Internet Explorer
Introduction Welcome to the Mount s Remote Access service. The following documentation is intended to assist first time or active users with connecting, authenticating and properly logging out of Remote
More informationSelf-Service Password Manager
WWW.ROSE-HULMAN.EDU/EIT OFFICE OF ENTERPRISE INFORMATION TECHNOLOGY Self-Service Password Manager Rose-Hulman Institute of Technology has implemented a self-service password manager that provides an easy-to-use
More informationCisco ASA Authentication QUICKStart Guide
Cisco ASA Authentication QUICKStart Guide Powerful Authentication Management for Service Providers and Enterprises Authentication Service Delivery Made EASY Copyright 2012 SafeNet, Inc. All rights reserved.
More informationDPH TOKEN SELF SERVICE SITE INSTRUCTIONS:
DPH TOKEN SELF SERVICE SITE INSTRUCTIONS: The purpose of this document is to provide users with assistance on resolving connection issues with Department of Public Health (DPH) Entrust tokens. These instructions
More informationCitiDirect BE. Getting Started Kit. Solution Corporate and Public Sector Clients in Singapore. Welcome to CitiDirect BE!
SM CitiDirect BE Getting Started Kit Solution Corporate and Public Sector Clients in Singapore Welcome to CitiDirect BE! CitiDirect BE is the evolution of CitiDirect Online Banking (CitiDirect). New user-friendly
More informationmbank Introduces Personal Security Image MFA* for Consumer on-line banking *Multi-Factor Authentication
mbank Introduces Personal Security Image MFA* for Consumer on-line banking *Multi-Factor Authentication Enhanced security for your on-line banking activities. Beginning 24 January 2007 all mbank clients
More informationPaymentNet Federal Card Solutions Cardholder FAQs
PaymentNet Federal Card Solutions It s easy to find the answers to your questions about PaymentNet! June 2014 Frequently Asked Questions First Time Login How do I obtain my login information?... 2 How
More informationQuick Start Guide to Logging in to Online Banking
Quick Start Guide to Logging in to Online Banking Log In to Internet Banking: Note: The first time you log in you are required to use your Customer ID. Your Customer ID is the primary account holder s
More informationResource Online User Guide JUNE 2013
Resource Online User Guide JUNE 2013 CHASE PAYMENTECH SOLUTIONS MAKES NO WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, WITH REGARD TO THIS MATERIAL, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
More informationIBM Security Access Manager for Enterprise Single Sign-On Version 8.2.1. User Guide IBM SC23-9950-05
IBM Security Access Manager for Enterprise Single Sign-On Version 8.2.1 User Guide IBM SC23-9950-05 IBM Security Access Manager for Enterprise Single Sign-On Version 8.2.1 User Guide IBM SC23-9950-05
More informationOnline eopf Self-service Feature for Login ID and Password Retrieval for New Users
For Employees Online eopf Self-service Feature for Login ID and Password Retrieval for New Users eopf provides web-based access for Federal personnel to view and print employment documents. Employees are
More informationManageEngine ADSelfService Plus. Evaluator s Guide
ManageEngine ADSelfService Plus Evaluator s Guide Table of Contents Document Summary:...3 ADSelfService Plus Overview:...3 Core Features & Benefits:...4 ADSelfService Plus Architecture:...5 Admin Portal:...
More informationUsing YSU Password Self-Service
Using YSU Password Self-Service Using YSU Password Self-Service Password Self-Service Web Interface Required Items: YSU (MyYSU) Directory account, Web browser This guide will assist you with using the
More informationPARENT PORTAL: Proxy Management
PARENT PORTAL: Proxy Management Updated by Enrollment Management 8-2015 Table of Contents Welcome to MySRU 3 Home Tab 4 Proxy Management Student Giving Authorization 5 Student: Add Proxy 6 Student: Begin
More informationStrong Authentication for Cisco ASA 5500 Series
Strong Authentication for Cisco ASA 5500 Series with Powerful Authentication Management for Service Providers and Enterprises Authentication Service Delivery Made EASY Copyright Copyright 2011. CRYPTOCard
More informationi-mobile Multi-Factor Authentication
i-mobile Multi-Factor Authentication Introduction... 1 i-mobile Multi-Factor Authentication... 1 i-mobile WAP MFA Enrollment... 2 i-mobile Application MFA Enrollment... 4 Error Conditions and Resolutions...
More informationHertSFX. User Guide V2.04. Hertfordshire s Secure File Exchange Portal. (Jan 2014) HertSFX User Guide V2.04 Jan 2014 Page 1 of 17
Hertfordshire s Secure File Exchange Portal User Guide V2.04 (Jan 2014) HertSFX User Guide V2.04 Jan 2014 Page 1 of 17 CONTENTS 1. About HertSFX... 3 2. HertSFX Limitations... 3 3. Getting Started... 3
More informationHow do I enroll in the password portal?
The self-serve portal is designed to allow you to change your password and unlock your locked account even if you have forgotten your password. You must enroll for this service to be able to use it. You
More informationSophos Mobile Control User guide for Apple ios. Product version: 4
Sophos Mobile Control User guide for Apple ios Product version: 4 Document date: May 2014 Contents 1 About Sophos Mobile Control...3 2 About this guide...4 3 Login to the Self Service Portal...5 4 Set
More informationShaw Industries Self-Service Password Management
Shaw Industries Self-Service Password Management Table of Contents Introduction and Objective... 2 Cannot Use From The Internet Site... 2 Other Passwords May Be Changed... 2 First Log In... 2 Password
More informationManaging policies. Chapter 7
Chapter 7 Managing policies You use the Policies tab in Admin Portal to create policy sets for roles. A policy set lets you configure the following categories of policies: Mobile Device Policies Use to
More informationCitrix Single Sign-On Self-Service Password Reset
Citrix Single Sign-On Self-Service Password Reset Citrix Single Sign-On (SSO) Self-Service tools enable you to take control when you forget your password. Using the three security questions you established
More informationNetIQ Advanced Authentication Framework - Client. User's Guide. Version 5.1.0
NetIQ Advanced Authentication Framework - Client User's Guide Version 5.1.0 Table of Contents 1 Table of Contents 2 Introduction 4 About This Document 4 NetIQ Advanced Authentication Framework Overview
More informationSelf-service password management user guide
King s College London IT Services Self-service password management user guide v1.04 26 January 2016 Contents How to register for online services and self-service password management... 2 How to reset your
More informationAgent Configuration Guide
SafeNet Authentication Service Agent Configuration Guide SAS Agent for Microsoft Internet Information Services (IIS) Technical Manual Template Release 1.0, PN: 000-000000-000, Rev. A, March 2013, Copyright
More informationaccount multiple solutions
Quick Start Guide 1 Our easy to use guide will get you up and running in no time! The guide will assist you with: Generating your Sage Pay login Navigation Creating contacts Creating system users Setting
More informationRSA SecurID TOKEN User Guide for Initial Setup and Use Secure Access to Andes Petroleum E-mail from Internet
GLOSSARY RSA SecurID TOKEN User Guide for Initial Setup and Use Secure Access to Andes Petroleum E-mail from Internet This guide applies, if you ve assigned a RSA SecureID TOKEN. For more information or
More informationAuthentication Tokens
State Capitol P.O. Box 2062 Albany, NY 12220-0062 www.its.ny.gov New York State Information Technology Standard IT Standard: Authentication Tokens No: NYS-S14-006 Updated: 05/15/2015 Issued By: NYS ITS
More informationRSA Authentication Manager 8.1 Help Desk Administrator s Guide. Revision 1
RSA Authentication Manager 8.1 Help Desk Administrator s Guide Revision 1 Contact Information Go to the RSA corporate website for regional Customer Support telephone and fax numbers: www.emc.com/domains/rsa/index.htm
More informationBlackShield ID Agent for Remote Web Workplace
Agent for Remote Web Workplace 2010 CRYPTOCard Corp. All rights reserved. http:// www.cryptocard.com Copyright Copyright 2010, CRYPTOCard All Rights Reserved. No part of this publication may be reproduced,
More informationInstructions to Sign On and Off of Self Service Applications. Internet Explorer 9 (IE9) Users: Turn Off Compatibility View:
Instructions to Sign On and Off of Self Service Applications NOTE: Internet Explorer 7 and 8 are the only supported Browsers for the PeopleSoft Student Self Service applications. If you experience technical
More informationBahamas Tax Information Exchange Portal Documentation
Bahamas Tax Information Exchange Portal Documentation This sub section of the Portal Documentation covers the following Topics: Portal Overview Portal Login Account Status Reportable Account File Processing
More informationDalton State College Password Management System
Dalton State s new password management system (PortalGuard) provides a convenient means for DSC students, faculty, and staff to unlock their Active Directory account or reset their Active Directory password
More informationSecurity Token User Guide
TABLE OF CONTENTS 1 INTRODUCTION... 3 1.1 FUNCTIONS OF THE TOKEN... 3 1.2 SECURITY FEATURES OF THE TOKENS... 3 1.3 TOKEN INTERFACE... 3 1.4 VASCO TOKEN REPLACEMENT... 4 1.5 DEFINITIONS AND ACRONYMS...
More informationProtecting Yourself from Identity Theft
Protecting Yourself from Identity Theft Identity theft is everywhere. In fact, according to a 2013 report by Javelin Research, there is one incident of identity fraud every two seconds. While we cannot
More informationUSER-FAQ (2FA) Q. What are the key features of Fraud Management Solution (Baroda isecure)?
USER-FAQ (2FA) Q. What is Fraud Management Solution (Baroda isecure)? Ans. Fraud Management Solution (Baroda isecure) is an enhanced security solution which helps reduce chances of phishing attack on customer
More informationVirto Password Reset Web Part for SharePoint. Release 3.1.0. Installation and User Guide
Virto Password Reset Web Part for SharePoint Release 3.1.0 Installation and User Guide 2 Table of Contents OVERVIEW... 3 SYSTEM REQUIREMENTS... 3 OPERATING SYSTEM... 3 SERVER... 3 BROWSER... 4 INSTALLATION...
More informationContextual Authentication: A Multi-factor Approach
Contextual Authentication: A Multi-factor Approach Multi-factor Authentication Layer v.3.2-003 PortalGuard dba PistolStar, Inc. PO Box 1226 Amherst, NH 03031 USA Phone: 603.547.1200 Fax: 617.674.2727 E-mail:
More informationSafeNet Authentication Client (Windows)
SafeNet Authentication Client (Windows) Version 8.1 SP1 Revision A User s Guide Copyright 2011 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete
More informationSecurity Cooperation Information Portal
September 2015 https://www.scportal.us/ Contents Website... 3 Home... 3 Registration Info... 3 User Agreement... 4 SCIP Logon... 4 Digital Certificate with Name CAC or PKI users... 4 Token Users... 4 Warning
More informationThis document shows new Citrix users how to set up and log in to their Citrix account.
Citrix Set up Set up and Log in to Citrix Objective: This document shows new Citrix users how to set up and log in to their Citrix account. Procedure This document shows you how to set up and log in to
More informationLogging into LTC Instant Access the First Time
Logging into LTC Instant Access the First Time Access the Instant Access website at: https://mycampus.gotoltc.edu Enter your LTC network username and password. These are the credentials you use to initially
More informationMUTUAL OF OMAHA SECURE EMAIL SYSTEM CLIENT/PARTNER USER GUIDE
MUTUAL OF OMAHA SECURE EMAIL SYSTEM CLIENT/PARTNER USER GUIDE Mutual of Omaha Secure Email Client/Partner User Guide April 2015 TABLE OF CONTENTS INTRODUCTION 3 About this Guide 3 CREATING A MUTUAL OF
More informationJuniper SSL VPN Authentication QUICKStart Guide
Juniper SSL VPN Authentication QUICKStart Guide Powerful Authentication Management for Service Providers and Enterprises Authentication Service Delivery Made EASY Copyright 2012 SafeNet, Inc. All rights
More informationEVALUATION GUIDE. Evaluating a Self-Service Password Reset Tool. Usability. The password reality
EVALUATION GUIDE Evaluating a Self-Service Password Reset Tool This guide presents the criteria to consider when evaluating a self-service password reset solution and can be referenced for a new implementation
More informationRSA Authentication Manager 8.1 Help Desk Administrator s Guide
RSA Authentication Manager 8.1 Help Desk Administrator s Guide Contact Information Go to the RSA corporate website for regional Customer Support telephone and fax numbers: www.emc.com/domains/rsa/index.htm
More informationGetting Started with Web Based Data Reporting. November, 2005
Getting Started with Web Based Data Reporting November, 2005 This is a brief overview describing how to use the Colorado EMS Data Collection web based reporting tool. It is not a comprehensive manual,
More informationUse the Active Directory Self Service Plus (ADSSP)
HOW-TO Use the Active Directory Self Service Plus (ADSSP) In order to assist our users cope with the new Password Policy, ICT has installed an account Self Service module (ADSSP) that allows employees
More informationEnhanced Login Security Frequently Asked Questions
Enhanced Login Security Frequently Asked Questions Below are Frequently Asked Questions to assist you and you can also contact Customer Service at 903-657-8525 or 800-962-1610. Q: What is Enhanced Login
More informationExperian Username and Password Self Service Facility. User Guide
Experian Username and Password Self Service Facility User Guide Contents 1 Document Control... 3 1.1 Version Control... 3 1.2 Document History... 3 2 New Users... 4 2.1 How to setup your security profile...
More informationSophos Mobile Control User guide for Windows Phone 8. Product version: 3.5
Sophos Mobile Control User guide for Windows Phone 8 Product version: 3.5 Document date: July 2013 Contents 1 About Sophos Mobile Control...3 2 About this guide...4 3 Login to the Self Service Portal...5
More informationIntroduction to UCONNECT Student Edition. 4/14/11 v.1.3
Introduction to UCONNECT Student Edition 4/14/11 v.1.3 Contents Accessing UCONNECT... 2 How do I get a username for UCONNECT?... 2 How do I log in?... 2 What should I see when I login?... 3 Channels...
More informationGetting Started. Business Link. User Name Rules. Hardware/Software Requirements. Password Rules
Getting Started User Name Rules All user names must: Be unique. Be between six and 40 characters in length. Notes: It is recommended that user names consist only of alphanumeric characters (A-Z, 0-9).
More informationAD Self-Service Suite for Active Directory
The Dot Net Factory AD Self-Service Suite for Active Directory Version 3.6 The Dot Net Factory, LLC. 2005-2011. All rights reserved. This guide contains proprietary information, which is protected by copyright.
More informationZyWALL OTP Co works with Active Directory Not Only Enhances Password Security but Also Simplifies Account Management
ZyWALL OTP Co works with Active Directory Not Only Enhances Password Security but Also Simplifies Account Management Problem: The employees of a global enterprise often need to telework. When a sales representative
More information