Versions Compared

Old Version 4

changes.mady.by.user Cristina Barquilla

Saved on

compared with

New Version 5

changes.mady.by.user Pablo Garcia Gonzalez

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Password change



Changing the password in Evicertia is very simple. To do this, first you have to click on the link "Change password" found in the upper right part of the service.



  • Fields to complete:
    • Current password: It is the password with which we can access Evicertia.
    • New password: enter the new password chosen by the user, which must contain no more than 6 characters and it cannot be the same as the current one to be modified.
    • Confirm password: as a security measure, you have to re-enter the new password to make sure of the combination of keys chosen.

...

  • Where necessary to request a password reset, the fastest and most effective way is through the option "Have you forgotten your password?" found on the Evicertia home page.



Once this link is clicked, a window appears asking to enter the email account with which we are registered in Evicertia, and when we click the "Submit" button, an email will be sent to that account with the steps necessary to reset the password:

  1. It tells us what the validation code is, which is necessary to carry out the operation. This code is randomly generated by Evicertia.
  2. They show the full URL in case you want to click directly on it and access Evicertia to indicate the new password.



In Evicertia and clicking on the link, the new password is requested in order to change it and access the system.


Changing password policies for a site.

A site admin can modify his site's password policies. To do this, he should take the following steps:

  1. While logged into his account, he clicks on the link with the name of his site.
  2. On the next page, click on the link "Changing settings for my organization".

...

  1. Select the tab "Password policies".








Policies that can be modified are as follows:

  • Minimum password length: In this field you can enter the minimum password length that the passwords must have.

...

  • Verification against the most used passwords and user data: If this option is checked, the passwords will be validated with a defined list of the most used passwords and with the user's data, in order to avoid using any of these.


Forcing password change

The admin can force the users of his site to have to modify their password, so that they use the new policies set in the previous section.



To do this, they should take the following steps:

  1. While logged into his account, in My Data menu, select the option User Management.
  2. On the next page, check in Password change column the users to whom you want to force the change.
  3. Then click on the Change password button.
  4. Next time that user tries to log into the system, he will be asked to enter a new password following the policies set on the site.



Tips on passwords



Below we include a series of recommendations when generating a password and some tips to maintain your privacy. These recommendations are generic, and valid for any application.

  • The minimum password length for Evicertia passwords is 6 characters, but we recommend a longer password. The longer the password is, the harder it is for an attacker to guess your password.
  • When generating a password, use letters (you can interchange upper and lower case), numbers, and special characters (¡”•$%&/()=?¿).
  • Change passwords on a regular basis, for example every three months.
  • Use mnemonic rules to remember passwords, for example, a good way is to initialize each word in a sentence, interchanging upper and lower case, changing vowels for numbers, and ending (or starting with some special character). For, example, the sentence “Sending notifications with Evicertia is easy” can be turned into EnC3eF&&.
  • Do not use your access identifier as a password.
  • Do not use personal information such as your name, your partner‘s name, the name of the pet as a password, etc... 
  • It is not recommended to use key combinations such as qwerty, asdfg.
  • Do not use any password that you are already using in any other application, because if that password is found, all your passwords will be exposed.
  • Do not write the password on papers that are exposed to others.
  • It is not recommended to use words existing in dictionaries (of any language) as passwords.
  • It is not recommended to use the names of famous people or sportsmen.
  • Do not share passwords on Internet, by email or by phone. In particular, you should be wary of any email message asking for your password or indicating that you have to visit a website to verify it.

...