Internal/External User Login - Two-Factor Authentication

Owned by Taylor Mefford, created
Last updated: Aug 01, 2024 by John Kostakos
3 min read

Overview

Internal or External Users for programs that are set up with Windsor-configured nVIRO logins are prompted to provide their Login and Password credentials upon accessing nCORE, regardless of the client environment. Once these credentials are entered, an authentication attempt will run, which first looks for a valid Username; if the username is accepted, the password is then authenticated.

One-Time Password

When configured, if both Username and Password are valid, a One-Time Password (OTP) will be sent to the email account associated with the provided Username. Successfully entering that 6-digit OTP will grant the User access to nCORE.

 

image-20240726-172938.png

Remember Device

If Remember Device is checked during login, the user will not be required to receive and enter a One-Time Password for 30 days on the computer they logged in from.

Login Troubleshooting

Incorrect Username

  • If the Username provided is not correct, the initial Authentication attempt will fail, and the user will receive this message:

    • “Authentication attempt failed. Retry with valid credentials.”

image-20240726-172905.png

Incorrect Password

  • If the Username provided is correct, but the authentication fails for the provided password, the user will receive this message:

    • “Authentication attempt failed. Retry with valid credentials.”

  • Users will receive 9 total login attempts to remember their password, and if the last login attempt is unsuccessful, the account will become locked. To prevent locked accounts, users should utilize the “Forgot Password” functionality on this screen to simply reset their password by correctly answering the user-created security question(s).

Text boxes that have passed Authentication will display a darker color (based on your browser settings), while failed authentications will stay white.

Expired Password

  • When the account password has expired, the user is prompted to update this account password and will be unable to log into nCORE until the password is updated.

  • A live checklist that validates and confirms all password requirements will display, where a green check-mark will appear on each requirement that has been met:

    • One lower-case character

    • One upper-case character

    • One number

    • One special character

    • 8 characters minimum

  • Upon updating the password, the original login page will appear, where the user can then enter their Username and new Password, granting access to nCORE.

  • Checking the “Remember Me” box will remember your device for 30 days.

 

Create New Password

  • When the account password is updated, the user is prompted to Create and Enter the new password twice, with password requirements showing in red text.

    • New Password must contain 8 characters with a number, uppercase letter, lowercase letter, and a special character.

  • If the passwords do not match, language appears below the second text box, advising the user to confirm that the New Password matches in both boxes.