[Wactclc-alma] [External] RE: RE: login issues
Herman, Amy
aherman at olympic.edu
Fri Dec 1 12:45:48 PST 2017
Our staff are all set to internal, but still use their campus network credentials for the SAML login, not the internal Alma credentials. So you can do both. This way if SAML goes down, we can still get in as internal users. For some reason when the internal password expires, it affects the SAML login, but once we reset our internal passwords, everything goes back to normal.
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Guidry, Wade
Sent: Friday, December 1, 2017 12:42 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu>
Subject: [External] RE: [Wactclc-alma] RE: login issues
Rather than toggling accounts back and forth, it's probably easier, if you want to have an internal account for backup purposes (in case your campus authentication goes down), to create a second account and configure it as an internal account.
And just a reminder, for internal accounts, the Primary ID is going to also be the user name for logging in to Alma.
And you can make the primary ID a text string, "Louise" for example.
Wade Guidry
Library Consortium Services Manager, WACTCLC
wadeg at bigbend.edu<mailto:wadeg at bigbend.edu>
(509) 760-4474
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Farnham, Troy
Sent: Wednesday, November 29, 2017 9:40 AM
To: 'WACTCLC Alma Discussion' <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: RE: login issues
Wade,
Louise Choate had a similar login issue yesterday and today. She could not login thru the SAML redirect [https://sbctc-lowercolumbia.alma.exlibrisgroup.com/SAML].
Louise was set up as an Internal User. I switched her to External and now she is able to login with the SAML redirect but when I switched her back to Internal she couldn't.
So far none of the other LCC staff have had this issue.
Troy Farnham
Library Services
Learning Commons
Lower Columbia College
Longview, WA
(360)442-2663
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Guidry, Wade
Sent: Wednesday, November 22, 2017 1:28 PM
To: 'WACTCLC Alma Discussion' <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: RE: login issues
Correct, leaving it blank with allow passwords to remain unchanged indefinitely.
Just be aware, doing so is not recommended, and could be in conflict with institutional data security / privacy policies :) (https://www.olympic.edu/privacy-policy , etc). I would say a better compromise would be 180 days.
One benefit of using external accounts with Alma is that any security policies about password management and data access get automatically enforced.
Also, just FYI (and I probably didn't realize this until just now), changing the days count on passwords is not retroactive. The new policy is applied to an internal user's password the next time the password is changed (https://knowledge.exlibrisgroup.com/Alma/Knowledge_Articles/parameter_days_password_change_has_apparently_no_effect )
[Title: Big Bend Community College Logo]
Wade Guidry
Library Consortium Services Manager
Big Bend Community College
wadeg at bigbend.edu<mailto:wadeg at bigbend.edu>
509.760.4474
www.bigbend.edu<http://www.bigbend.edu/>
Big Bend Community College * 7662 Chanute Street NE * Moses Lake, WA 98837-3299
WACTCLC Alma Instance: Alma NA02<http://status.exlibrisgroup.com/>
WACTCLC Primo Instance: Primo NA08<http://status.exlibrisgroup.com/>
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Whittaker, Shellie
Sent: Wednesday, November 22, 2017 12:46 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: RE: login issues
Oopss...my bad. Too quick on the response. :) I was thinking about account expiry.
Still pretty sure that blank means none.
Shellie Whittaker
WACTC Library Consortium
shelliew at bigbend.edu<mailto:shelliew at bigbend.edu> | (360) 452-5264
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Herman, Amy
Sent: Wednesday, November 22, 2017 12:39 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: RE: login issues
It lets you set a number of days, so I will try leaving it blank. IF that doesn't work, I'll change it to 720 or something like that. Then in two years I won't remember why all the passwords are expiring! :)
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Whittaker, Shellie
Sent: Wednesday, November 22, 2017 12:37 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: [External] RE: [Wactclc-alma] RE: login issues
I believe that is the case. Another option is to set it to something like 12/31/2030.
Shellie Whittaker
WACTC Library Consortium
shelliew at bigbend.edu<mailto:shelliew at bigbend.edu> | (360) 452-5264
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Herman, Amy
Sent: Wednesday, November 22, 2017 12:35 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: RE: login issues
If I leave the setting blank, will passwords never expire?
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Guidry, Wade
Sent: Tuesday, November 21, 2017 1:49 PM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: [External] RE: [Wactclc-alma] RE: login issues
Just FYI, you can configure the # of days to password expiration on internal accounts under:
User Management / Configuration / Other Settings, the setting is called "days_password_change". Default is 90 days.
I can't really explain what you've seen at Olympic :)
There wouldn't be any logical connection between a staff person's internal and external accounts in Alma. From Alma's perspective, those records represent two distinct and separate individuals.
So, it seems weird that one login would impact the other.
Amy, what are a couple of examples of people to whom this happened.
You can send me names and/or EIDs off-list. I'm interested to take a look at this.
Wade Guidry
Library Consortium Services Manager, WACTCLC
wadeg at bigbend.edu<mailto:wadeg at bigbend.edu>
(509) 760-4474
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Herman, Amy
Sent: Tuesday, November 21, 2017 11:39 AM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: Re: [Wactclc-alma] [External] RE: login issues
Now we've had a fourth staff encounter this.
So what I have discovered is that, because our staff are set to internal, we set a password for their accounts (probably all the same day!). When that password expires (every 3-4 months is my guess), Alma forces you to reset that password, before it will allow you to use the SAML link to login instead (with your college network credentials). Once we reset the internal password for the staff member, and have them log out of their computer and back on, the SAML link works once again without requiring any logon.
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
From: Herman, Amy
Sent: Tuesday, November 21, 2017 9:53 AM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: RE: [External] RE: [Wactclc-alma] login issues
Yes, when they use the SAML link, the same one they've been using for months, it takes them instead to the internal login page and says their password (internal Alma password) is expired and needs to be reset. Does this happen automatically when an internal Alma password expires, even if that's not the usual authentication method?
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Guidry, Wade
Sent: Tuesday, November 21, 2017 9:45 AM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: [External] RE: [Wactclc-alma] login issues
Amy,
One quick thought...
Make sure they are using the correct URL for SAML login, to use their external accounts:
https://sbctc-olympic.alma.exlibrisgroup.com/SAML
The internal login URL is:
https://sbctc-olympic.alma.exlibrisgroup.com/mng/login
If users go to the internal login URL, and haven't logged in internally in a while, the password for their internal account may very well have expired, and needs to be updated.
Wade Guidry
Library Consortium Services Manager, WACTCLC
wadeg at bigbend.edu<mailto:wadeg at bigbend.edu>
(509) 760-4474
From: Wactclc-alma [mailto:wactclc-alma-bounces at lists.ctc.edu] On Behalf Of Herman, Amy
Sent: Tuesday, November 21, 2017 9:10 AM
To: WACTCLC Alma Discussion <wactclc-alma at lists.ctc.edu<mailto:wactclc-alma at lists.ctc.edu>>
Subject: [Wactclc-alma] login issues
Over the last 12 hours three different staff members have been redirected from our SAML login for Alma to the internal Alma login page, with a message that their Alma password has expired and needs to be reset. Any idea why SAML is being redirected? It is not happening to everyone. I had made our staff accounts "internal" so that they had a backup way to get in if SAML ever went down.
Amy Herman
Library Faculty | Olympic College
1600 Chester Avenue | Bremerton, WA 98337
aherman at olympic.edu<mailto:aherman at olympic.edu> | 360-475-7256
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ctc.edu/pipermail/wactclc-alma_lists.ctc.edu/attachments/20171201/4aa0fdc2/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 12948 bytes
Desc: image001.png
URL: <http://lists.ctc.edu/pipermail/wactclc-alma_lists.ctc.edu/attachments/20171201/4aa0fdc2/attachment-0002.png>
More information about the Wactclc-alma
mailing list