Secure Access Manager User Guide December 2017

Similar documents
Exostar Identity Access Platform (SAM) User Guide September 2018

Exostar Identity Access Platform (SAM) User Guide July 2018

Secure Access Manager User Guide September 2017

E X O S T A R, LLC D A T E : M AY V E R S I O N : 4.0

13241 Woodland Park Road, Suite 400 Herndon, VA USA A U T H O R : E X O S T A R D ATE: M A R C H V E R S I O N : 3.

Phone-Based One-Time Password User Guide November 2017

Hardware One-Time Password User Guide August 2018

Secure Access Manager (SAM) Administrator Guide December 2017

Hardware One-Time Password User Guide November 2017

Managed Access Gateway One-Time Password Guide Version 1.0 February 2017

Copyright 2017 Exostar LLC. All rights reserved. Phone One-Time Password User Guide October 2017

E X O S T A R L L C D A T E : N O V E M B E R V E R S I O N : 2.0

Managed Access Gateway. User Guide

Managed Access Gateway. User Guide

How to Obtain a Medium Level of Assurance Hardware or Software Digital Certificate it is necessary to Complete Webcam Proofing

Identity and Access Management (IAM) Platform User Guide

Identity and Access Management (IAM) Platform User Guide

Managed Access Gateway One-Time Password Hardware Tokens. User Guide

Managed Access Gateway. Request Management Guide (For Administrators)

Partner Information Manager Supplier Guide October 2017

Martin Baker Secure Source-to-Pay How to Access and Log In

Phone-Based One-Time Password without Proofing (Level 2) User Guide November 2017

Electronic Prescribing for Controlled Substances. EPCS with NewCrop e-prescribing Identity Proofing with Exostar. Setup and User Guide

Electronic Prescribing for Controlled Substances. EPCS with erx e-prescribing Identity Proofing with Exostar Setup Guide

Identity and Access Management (IAM) Application Administrator and Federated Identity Service Administrator Guide

Enterprise Access Gateway Management for Exostar s IAM Platform June 2018

Managed Access Gateway Third-Party Credential User Guide August 2017

Exostar Identity Access Management Platform (IAM) First Time Login November 2017

Managed Access Gateway. Request Management Guide (For FIS Administrators)

The subject is titled: i. Action Required: Activate your Exostar SAM Account for MSD This contains the Activation URL

5 SECURE QUALITYNET PORTAL

Register for a HCQIS Access Roles and Profile (HARP) Account

Regions OnePass USER GUIDE. It s time to expect more. Regions Bank Member FDIC Revised

Bechtel Partner Access User Guide

Electronic Appraisal Delivery (EAD) Portal. FHA EAD Lender Admin Guide

Table of Contents. Overview of the TEA Login Application Features Roles in Obtaining Application Access Approval Process...

Copyright May 2017 Exostar, LLC All rights reserved.

QSI EPCS On-Boarding Manual. User Guide

ChARM EPCS. User Guide for Washington

Partner Information Manager (PIM)

Regions OnePassSM USER GUIDE. It s time to expect more. Regions Bank Member FDIC Revised

NextGen Patient Portal. User Guide.

ARRIS MEMBERSHIP REGISTRATION GUIDE

A. Getting Started About e-access Enrolling in e-access: Authenticating your account Login... 5

Managed Access Gateway

Manage Guest Accounts

VAT IMPORT DECLARATION USER GUIDE (REGISTERED AND NON-REGISTERED USERS)

Shared CROMERR Services (SCS) Advanced Services Help Desk User Guide

User Manual. (Priority Allotment of Plots) Guidelines for online plot application submission on MIDC

AgentWorks Administrator and Manager User Guide - Release 12.5

Supplier Reference Guide (QRG) Table of Contents

The MyCSF Administrator s Tool Guide

ECHA Accounts Manual for Industry Users

Contact: Wealth Passport Help Center

TAS User Guide. 12 January Version 1.0

Install Application Start Download the Application

SafeNet Authentication Manager

Medicare Exclusion Database Registration Medicare Exclusion Database Registration

GRANTS AND CONTRIBUTIONS ONLINE SERVICES USER GUIDE: ACCOUNT REGISTRATION AND MANAGEMENT

isupplier Portal Registration & Instructions Last Updated: 22-Aug-17 Level 4 - Public INFRASTRUCTURE MINING & METALS NUCLEAR, SECURITY & ENVIRONMENTAL

EPCS Identity-Proofing Procedures

E-prescribing of Controlled Substances

KHEDS Account Creation and Maintenance URL:

PS&R Backup Security Official, Admin, or User Registration PS&R Backup Security Official, Admin, or User Registration

Customer Online Support Demonstration. 1

Patients' FAQs. Patient Portal Version 2.7 NEXTMD.COM

Login with Amazon. Customer Experience Overview for Android/Fire apps

System Administrator s Guide Login. Updated: May 2018 Version: 2.4

A Fiscal Intermediary/Medicare Administrative Contractor (FI/MAC) can only have one PS&R Role and only one STAR role for the same MAC.

One Identity Starling Two-Factor Authentication. Administration Guide

Registration for Online Services at Drayton Medical Practice

INTRODUCTION FEATURES OVERVIEW. a) Applicant Registration

SAML-Based SSO Solution

7. How do I obtain a Temporary ID? You will need to visit HL Bank or mail us the econnect form to apply for a Temporary ID.

Molina Agent User Guide

ipad ereader User s Guide

CMS Enterprise Portal User Manual

BlackBerry AtHoc Networked Crisis Communication. Self Service User Guide

ONE ID Identity and Access Management System

Welcome to the QParents Portal... 2

ACT Test Accessibility and Accommodations System (TAA) User Guide

Activate Credentials. Click here to Login to Truman s Student Portal. Check out the Credentials Video for additional guidance.

Table of Contents 1. ABOUT THE GIS PANGEA SYSTEM 5 2. HOME DASHBOARD OVERVIEW MANAGER DASHBOARD OVERVIEW 66

DigiCert User Guide. Version 6.4

ForumPass Familiarization Participant Workbook June 2018

One Identity Starling Two-Factor Desktop Login 1.0. Administration Guide

Opaali Portal Quick guide

BOCI Securities Limited Security Token User Guide (for Securities Account) Content

ISS INDIA Active Directory Self Password Management Solution ISS Facility Services India PVT.LTD.

October J. Polycom Cloud Services Portal

NIELSEN API PORTAL USER REGISTRATION GUIDE

Managing WCS User Accounts

OnPoint Release 4.2 July 2011 Release Notes Web Version E!=Key Enhancement/Update E=Enhancement B=Bug Fix

BSE-SINGLE SIGN ON. For Brokers/ Banks/ Mutual Funds

Patient Portal: Policies and Procedures & User Reference Guide Patient Portal Version 5.8.1

TSSA PORTAL TRAINING GUIDE

Registration Manual My Globality Online Portal

Light Account Supplier Quick Guide. Version: 1.0 / July 2018

Registration & Payments User Guide

Access auto, commercial, home, and life solutions from a single entry point.

Transcription:

Secure Access Manager User Guide December 2017 Copyright 2017 Exostar, LLC All rights reserved. 1

INTRODUCTION... 3 SUMMARY... 3 BASIC FUNCTIONS... 3 LOGIN TO YOUR SAM ACCOUNT... 3 How to Activate your Account... 3 How to Login to SAM... 5 How to Recover My Password... 7 How to Reset an Expired Password... 9 SAM PORTAL... 10 The Home Tab... 12 The My Account tab... 12 APPLICATION ACCESS... 13 ACCOUNT MANAGEMENT BY USER... 14 EDIT PROFILE... 14 How to Edit My Profile... 14 VIEW ORGANIZATION DETAILS... 16 CHANGE EMAIL... 17 How to Change the Email Address Associated with my Account... 17 CHANGE PASSWORD... 18 How to Change Your Password... 18 CHANGE SECURITY QUESTIONS... 18 How to Update Your Security Questions... 19 ONE TIME PASSWORD (OTP)... 19 Identity Proofing... 19 US Based User Proofing: Experian Proofing... 20 International-Based User Proofing Webcam Proofing... 21 OTP Registration and Management... 23 How to Register your OTP Credential... 24 Phone OTP Credential... 25 Exostar Mobile ID Credential... 26 Login with Registered Credential... 26 OTP Hardware... 26 Phone OTP... 26 Exostar Mobile ID... 27 OTP Management... 28 ACCOUNT DISABLEMENT... 29 USER SELF REGISTRATION... 30 Copyright 2017 Exostar, LLC All rights reserved. 2

Introduction Summary Exostar s Secure Access Manager (SAM) is a consolidated portal used for account registration, authentication, and management. The authentication gateway supports secure authentication and provides access to applications and services hosted by Exostar and those managed by external entities. SAM s objective is to consolidate registration processes for connecting partners and applications in a secure environment, while providing flexible management and invitation capabilities to application owners. Key Functions of SAM include: Extend the basic concept of Web based Single-Sign-On (SSO) to support single sign on and access to multiple applications. Support authentication credentials of varying assurance levels. Facilitate an organizational approach to registration, account management and application access. Provide organizational control over new user approval and access requests. Basic Functions Login to your SAM Account Whether logging in to SAM for the first time, returning to the portal, or logging in via EAG, you can access the portal at https://secureaccess.exostar.com. How to Activate your Account Upon creation of a SAM account, you will receive email notification containing the link to activate your SAM account. The account activation process will include creation of a password, and selection of security questions. The account activation email will be resent 2 times every 30 days, and new activation notifications will supersede activation links sent in previous emails. Account activation must be completed within 180 days or the account will be deactivated (deleted). Once you have completed the first time login and are actively using the applications, you will be required to change your password every 90 days. Copyright 2017 Exostar, LLC All rights reserved. 3

Below are steps to complete your account activation: 1. Upon receipt of the activation notice, click the Activation Link provided in the email. Note: If you do not use the link in email to initiate the process, but instead choose to enter your email address on the SAM login screen, you will be prompted to enter captcha in order to resend Activation email. 2. Enter a password and then reenter to confirm. Click Submit to continue. Note: Passwords must be 8 to 16 characters long. They must include at least 4 different characters, 1 alphabetic character, 1 numeric character, and 1 special character. Leading and trailing spaces are not allowed. Passwords will expire after 90 days. Copyright 2017 Exostar, LLC All rights reserved. 4

3. Create your password reset secrets by selecting and responding to four security questions. Users may have the option to add a phone number for additional security. If selected, you can choose to register a phone number in order to receive a one-time password, instead of answering security questions, during account recovery. 4. Upon successful entry of authentication information (password and security questions), you will be redirected to SAM portal and your account authentication is complete. How to Login to SAM Once you have completed the account authentication login process, and have established your password and security questions, all subsequent Logins to SAM will be as follows: 1. Go to the SAM login portal: https://secureaccess.exostar.com. Copyright 2017 Exostar, LLC All rights reserved. 5

2. Enter your User ID or Email address. Click Continue. SSO/EAG users will have a cookie installed which redirects to your organization R-IdP. If the user deletes the cookie or uses another browser, entering the email address will redirect the user to the proper R-IdP. 3. Enter your password. Click Login. Note: If the system recognizes your credential has not been activated, you will be prompted to resend the activation email. 4. Upon successful login, the SAM Home tab is presented. The home tab includes access to you active applications and organization information. Click an application in the My Applications section to launch the solution. Copyright 2017 Exostar, LLC All rights reserved. 6

Note: In some cases, you may be presented with the Terms and Conditions the first time you access and application. Please contact Exostar Customer Service for more information. How to Recover My Password Follow the steps below if you Forgot Your Password: 1. Go to the SAM login page at https://secureaccess.exostar.com. Enter your User ID or Email address and click Continue. 2. Click Forgot Password link. Copyright 2017 Exostar, LLC All rights reserved. 7

3. Enter your user ID. Click Continue. 4. Select and answer two of your security questions that were established during account activation. Click Continue. Copyright 2017 Exostar, LLC All rights reserved. 8

5. Enter your new password. Reenter the password for confirmation. Click Submit. Reminder: Passwords must be 8 to 16 characters long. They must include at least 4 different characters, 1 alphabetic character, 1 numeric character, and 1 special character. Leading and trailing spaces are not allowed. Passwords will expire after 90 days. A confirmation page is displayed confirming that the password has been changed. How to Reset an Expired Password SAM passwords are set to expire after 90 days. If you attempt to login and your password has expired, follow the steps below to reset your password: 1. After a failed attempt to login due to an expired password, click Reset Password. Copyright 2017 Exostar, LLC All rights reserved. 9

2. Select and answer two of your security questions that were established during account activation. Click Continue. 3. The Create New Password page is displayed. Enter your new password and reenter the password for confirmation. Click Submit. Reminder: Passwords must be 8 to 16 characters long. They must include at least 4 different characters, 1 alphabetic character, 1 numeric character, and 1 special character. Leading and trailing spaces are not allowed. Passwords will expire after 90 days. A confirmation page is displayed confirming that the password has been changed. SAM Portal When you log in to the SAM portal the landing page is displayed and consists of two functional tabs: the Home tab and the My Account tab. Copyright 2017 Exostar, LLC All rights reserved. 10

Home tab contains several containers of information including My Applications, My Organization, My Tasks, and Account Summary. You can open the applications you have access to from the Home tab. My Account tab allows you to edit your account profile, view organizational details, and manage email address, password and security questions. Users with administrative roles will see additional tabs in the SAM portal. Administration tab is available to Organization Administrators and provides user management capabilities. New users will be created within this tab, and existing user profiles can be updated. In addition, the administrator may subscribe the organization to additional Applications. Registration Requests tab is available to Organization Administrators and is used to grant SAM account approvals and application access to users who self register. It is also used to approve users for OTP Token use. Provider Administration tab is available to Service Provider Administrators and is used to manage Organization and User account subscriptions and access. The SP Admin role is not an org level administrator, but rather a system level administrator assigned by Exostar. Please refer to the SAM Administration Guide for more information on these roles, and the administrative functions available within SAM. Copyright 2017 Exostar, LLC All rights reserved. 11

The Home Tab When you log in to SAM, the Home tab is displayed featuring a dashboard of information. The page is primarily used to access your active applications. In addition to providing application access, this screen will contain summary information about your organization, tasks, and account. Note: The +Expand All Sections will expand each of the remaining containers. Each container may also be expanded individually by clicking on the containers o My Applications container: The My Applications container lists all applications that you have access to. Click the Application name to launch the solution. o My Organization container: The My Organization container provides the Organization ID and a summary of user statuses within your organization. The View Organization Details link provides access to the Organization Details page under My Account tab. o My Tasks container: The My Tasks container provides a consolidated list of to-do items with a link directly to each of the tasks. This may include Organization subscription requests as well as Password Expiration notices. o Account Summary container: The Account Summary container provides a summary of your account and your role(s) within SAM. The View Account Details link provides access to the Edit Profile page. link. The My Account tab The My Account tab allows you to manage your account profile, email address, password, security questions, and to view organization details. Copyright 2017 Exostar, LLC All rights reserved. 12

Edit Profile allows you to update your user profile information and link your SAM account with your R-IDP account. View Organization Details displays information about your organization including your Organization ID. Change Email* allows you to update your email address. Change Password* allows you change your current password. Note: The application will require you to change your password every 90 days. Change Security Questions* allows you to change the security questions that you established for your account during your first time login. OTP allows you to register, manage, or elevate the phone-based OTP functionality. * Does not apply to SSO EAG connected users. Application Access The SAM portal Home tab displays all the applications that you have been granted access to. From the Home tab, you can easily access your active applications by simply clicking on the application name. Copyright 2017 Exostar, LLC All rights reserved. 13

Account Management by User You can manage your account within the SAM portal on the My Account tab. The tab consists of links that allow you to: Edit Profile, View Organizational Details, and Change Email, Password, and Security Questions, and OTP. Edit Profile The Edit Profile Page allows you to view and modify your user profile information and allows you to link SAM account to your Remote Identity Provider Account. How to Edit My Profile To Edit your Account Profile: 1. Login to SAM. Access the My Account tab. Your profile page is displayed. Copyright 2017 Exostar, LLC All rights reserved. 14

2. Review the profile information and make desired changes. Click Continue. 3. A review page is displayed. Review and verify that the changes have been entered correctly. Click Submit to process the changes. 4. The confirmation page is displayed confirming that changes have been processed. You will receive an email confirming the changes. Copyright 2017 Exostar, LLC All rights reserved. 15

View Organization Details The View Organization Details link provides you with information regarding the following: Organization Details: including name, address, Org ID Credential Buyer information Organization Contact Org and App Admins Subscribed Applications Application Administrator contact information per application Copyright 2017 Exostar, LLC All rights reserved. 16

Change Email The Change Email feature allows you to change the email address associated with your SAM account. Emails must be unique in the system and cannot be linked to multiple accounts. When changing an email address, it is important that you contact all project partners and advise of the change to ensure that you can continue to access the applications. Note: If your account has been linked to your corporate network account via Enterprise Access Gateway (EAG), you will not be able to access Change Email tab. How to Change the Email Address Associated with my Account 1. Login to SAM. Open the My Account tab and click the Change Email link. 2. Enter your new email address. 3. Access your email to obtain the activation code. 4. Return to the SAM portal and enter the activation code. Copyright 2017 Exostar, LLC All rights reserved. 17

Change Password The Change Password feature allows you to change your SAM account password. The new password must comply with the Password Strength Policy as follows: Must contain a minimum of 8 characters and a maximum of 16 characters. Must contain at least 4 distinct characters, 1 alphabetic character, 1 numeric character and 1 special character such as!,@,#,$,% etc. Leading and trailing spaces are not permitted. Note: If your account has been linked to your corporate network account via Enterprise Access Gateway (EAG), you will not be able to access the Change Password tab. How to Change Your Password 1. Login to SAM. Open the My Account tab and click the Change Password link. 2. The Change Password page is displayed. Enter your current password. Enter the new password, and re-enter for confirmation. 3. Click Submit. Change Security Questions The Change Security Questions feature allows you to change the security questions that have been associated with your SAM account. Please note the following regarding your Security Questions: Security questions are used when you have forgotten your password or when you need to change your password. The system will only require you to remember two of the four questions when resetting your password. Copyright 2017 Exostar, LLC All rights reserved. 18

Each of your question and answer combinations must be unique. The answers to the security questions are case-sensitive. Note: If your account has been linked to your corporate network account via Enterprise Access Gateway (EAG), you will not be able to access the Change Security Questions tab. How to Update Your Security Questions 1. Login to SAM. Open the My Account tab and click the Change Security Questions link. The Change Security Questions page is displayed. 2. Locate and select the question/answer combination to be changed. 3. Make desired changes and click Submit. A confirmation page is displayed confirming that changes have been processed. You will receive an email confirming the changes. One Time Password (OTP) One Time Password credentials are required in order to access partner applications that require two-factor authentication (2FA). Therefore, if you are attempting to access an application that requires 2FA, you need a security credential. Identity Proofing Depending on the credential requirement for the partner application you are accessing, you may require an OTP credential with or without the identity proofing upgrade. Identity proofing is the process of verifying your identity with Exostar. If your OTP credential does not require identity proofing, proceed to the OTP Registration section in this guide to register your credential. There are two types of proofing processes: US Based Users - Experian Proofing Service: For US-based users requiring proofing, it is preferred you proceed through the Experian proofing by completing the Credit Bureau Copyright 2017 Exostar, LLC All rights reserved. 19

Based Proofing process. During this process, you are prompted to answer questions about credit or residency history provided and verified by a credit bureau. International Based Users - Exostar Webcam Proofing: International-based users requiring proofing must complete the Webcam Proofing process. During this process, you will meet virtually with a proofing agent and verify your identity. US Based User Proofing: Experian Proofing Experian proofing is a credit bureau proofing process which requires you to verify your identity by answering credit bureau-based questions. If you successfully complete the questions, you have completed the process, and will then be prompted to register your OTP credential. Credit Bureau-Based Proofing is only available for users located in the US. Important: If you do not answer the questions correctly, but the credit bureau is able to locate you with your personal information (e.g. name and address), you will receive the activation code via postal mail. If the credit bureau is unable to locate you in their database, you will be redirected in to the Live Proofing process to complete your identity proofing. Users unable (or unwilling) to complete credit bureau-based questions can opt to complete the Webcam Proofing with a live proofing agent. If you click I Disagree you will be redirected into the Live Proofing process to complete the identity proofing. Follow the steps below to complete Experian proofing: 1. After you have confirmed your profile (not illustrated), you will need to verify your identity. Please ensure that the required fields are completed accurately. Click I Agree to continue. Copyright 2017 Exostar, LLC All rights reserved. 20

2. A a list of questions regarding your financial and residential history is presented. These questions, and your responses, will be used to verify your identity, so please answer carefully and accurately. 3. Once you complete all questions, click Next to continue. Note: If incorrect answers are provided, but the credit bureau is able to locate you with your personal information, you will receive an activation code in four business days via postal mail. The activation code is required for you to activate your credential. If the credit bureau cannot locate you or verify your identity, the system will redirect you to the Webcam proofing process. 4. Upon successful completion of your identity authentication, you will be directed to register your OTP credential. International-Based User Proofing Webcam Proofing International-based users, and US users who are unable to complete the credit bureau proofing, will be directed to Exostar s Webcam Proofing process. Exostar s Webcam Proofing requires you to present valid Government-issued photo identification to prove your identity to an Exostar Proofing Agent, over a live webcam- proofing session. Please review the Acceptable Documentation requirements to view the list of identity documents required. Exostar Webcam Proofing takes place within a secure Cisco Webex meeting. Before your appointment, we highly recommend performing the Webex System Test on your machine, as there is limited time during the proofing session to troubleshoot your system configuration. Excessive troubleshooting time during the proofing appointment will likely result in the need to reschedule. For additional information about webcam proofing requirements, including acceptable documentation and troubleshooting, please reference the Webcam Proofing Resource page. Schedule Your Proofing Appointment Follow the steps below to complete Webcam proofing: 1. Click the Click! to Schedule button. Copyright 2017 Exostar, LLC All rights reserved. 21

2. To schedule your proofing appointment, select an available date and select a time. Click Continue. 3. Enter your contact information. Click Confirm. Copyright 2017 Exostar, LLC All rights reserved. 22

4. You have successfully scheduled your appointment and an appointment confirmation page displays. You will receive an appointment confirmation email. Note: An Exostar proofing agent will contact you on your scheduled appointment date. The proofing appointment can take up to 30 minutes. 5. You will be contacted by the Exostar Proofer on the day of your appointment. During your proofing appointment you will be required to answer a series of yes or no questions, and provide acceptable, unexpired identification via a webcam to the proofer. Visit the Live Video Proofing Resource page for more information. Once you successfully complete proofing, the proofing agent will provide you the activation code. This code will be required to activate your credential. OTP Registration and Management The OTP link allows you to register, manage, elevate or deactivate your OTP credential. The OTP credential may be linked using phone, OTP Hardware or Exostar Mobile ID. You can only register one credential type to your account. Copyright 2017 Exostar, LLC All rights reserved. 23

How to Register your OTP Credential Follow the steps below to register and activate the required OTP credential: 1. Login to SAM. Open the My Account tab and click the OTP link. 2. Click Register to register a new device to your account. 3. In some cases, you will have the option to choose the OTP credential type that you would like to register. Choose between Phone OTP, Hardware OTP or Mobile ID. Click Submit. Note: If your organization is not setup to accept OTP Hardware or Exostar Mobile ID, you will only see Phone OTP. Copyright 2017 Exostar, LLC All rights reserved. 24

4. For OTP Hardware, enter your address and click Submit. For Phone OTP or Exostar Mobile ID (powered by Authy ), enter user information, select the Country, and click Next. Phone OTP Credential 1. Select Delivery Method (text message or voice message) and Country. Enter the phone number in the Enter and Confirm Phone Number fields. 2. Click Send Code. 3. You will receive a verification code via your selected delivery method. 4. Enter the received code in the Verification Code field. 5. Click Submit. 6. A successful registration message is displayed. Click Complete. Copyright 2017 Exostar, LLC All rights reserved. 25

Note: Standard text messaging rates apply. The verification code expires after two minutes. You can resend a new code to the selected delivery method. Additionally, after you register your initial telephone, you can register additional phones. It is recommended you register at least two phones, but you can register up to three. Exostar Mobile ID Credential 1. Install Authy on your mobile device. This can be found on your phone s app store. 2. Select country and mobile phone number. Click Register Phone. 3. View the push notification or app from your mobile device to approve or deny. If this is unsuccessful, obtain a token ID from the app. Click the X to cancel One Touch. Enter the token id that displays in the Authy app in the Soft OTP field and click Submit. 4. You will receive a successful registration message. Click Complete. Login with Registered Credential To login with your registered credential to access your required application, follow the instructions below. OTP Hardware 1. Log into your SAM account with your username and password. 2. Select One Time Password. Click Continue. 3. You will receive the OTP Authentication page. Enter the One-Time Password code displayed on your token in the One-Time Password field. Click Authenticate. 4. You are authenticated with your OTP Hardware token. The credential strength (upper, right corner) will display Hardware OTP. Phone OTP 1. Log into your SAM account with your username and password. 2. Select One Time Password. Click Continue. 3. The phone number and delivery method will default. Click Send. Copyright 2017 Exostar, LLC All rights reserved. 26

4. You will receive the authentication code via your selected delivery method. 5. Enter the code that you received in the OTP Code field. Click Submit. 6. You are authenticated with your Phone OTP credential. The credential strength (upper, right corner) will display Phone OTP. Exostar Mobile ID 1. Log into your SAM account with your username and password. 2. Select One Time Password. Click Continue. 3. To approve with One Touch, click Approve from the push notification received via your mobile device. 4. If One Touch is not working or if you want to manually enter the token id, click X to manually enter the soft OTP code. Copyright 2017 Exostar, LLC All rights reserved. 27

5. Enter the code that displays in the Authy app on your mobile devie in the Soft OTP field. Click Submit. 6. You are authenticated with your Exostar Mobile ID credential. The credential strength (upper, right corner) will display Mobile ID. OTP Management After you have successfully registered your credential, you will be able to manage, elevate or deactivate the credential from the OTP link. Manage The Manage feature allows you to manage your OTP credential. Management includes (but is not limited to) registering and deleting phones (Phone OTP users) and revoking credentials. Registering an additional phone allows you to have an alternative device in case you lose access to your primary phone. If you do not register an additional phone and lose access to the phone you initially registered, you have to Copyright 2017 Exostar, LLC All rights reserved. 28

complete identity proofing again to register a new phone. You can register up to three phones. Important! Revoking is a permanent action and cannot be undone. If you revoke your credential you will may be required to register a new credential to your account. If your credential included the identity proofing upgrade, you will need to complete identity proofing again if you are using Phone OTP and did not register additional phones, OTP Hardware and Exostar Mobile ID. Elevate If you log in to SAM without invoking your OTP credential, you can choose to elevate your credential strength, and invoke the OTP credential, during your session without logging out. 1. To elevate, click Elevate. 2. Enter required fields and click Submit. 3. The credential strength (upper, right corner) will display your required credential and should no longer say username and password. Deactivate The Deactivate features removes the credential from your account. Important! Deactivate is a permanent action and cannot be undone. If you deactivate your credential you will may be required to register a new credential to your account. If your credential included the identity proofing upgrade, you will need to complete identity proofing again. Account Disablement Inactivity on your account may result in the account being suspended or deleted. The following are some reasons why your account may get deleted or suspended: Account Activation not completed for more than 180 days If you have not completed first time login (account activation) for your SAM account within 180 of account creation, your account will be deleted. If your account is deleted, you will have to reregister in the system. Application access suspension Each application can set the parameters for the number of days of inactivity that will lead to access suspension. If your application access is due for suspension in 30 days or less, each time you login to your SAM account, you will be presented with a flash screen to remind you to access the application and the number of days to suspension. To ensure that you do not lose access to the applications you need, it is a good practice to login to your SAM account regularly and access available applications. Application access deletion If your application access has been suspended for x number of days as specified by the application owner, your access to the application will be deleted. You will be notified regarding this deletion 30 days in advance. Copyright 2017 Exostar, LLC All rights reserved. 29

Active account deletion: If the last active application subscription is suspended, your SAM account will be suspended 30 days after the application suspension. You will be notified regarding this suspension 30 days in advance. Contact Exostar Customer Support for information on how to re-establish application access. User Self Registration You can initiate the process of creating your SAM account and requesting application access by going through the User Self-Registration process. Follow the steps below to complete self-registration: 1. Go to https://secureaccess.exostar.com/userregistration. Complete all required fields. Notes: After you enter the Organization ID, click Verify Organization to populate the next two fields. All required fields are denoted by *. It is recommended that you use your organization domain email address, not a personal email address. 2. Select the application(s) for which you would like access. Indicate the subscription period, if applicable. The products and services that are listed on this page are based on selections made by your organization. Click Next to continue. Copyright 2017 Exostar, LLC All rights reserved. 30

Note: In order to access applications with higher level security (i.e, a Level 3 application) the Sponsor Email Address must match an email within the sponsoring organization 3. The Submission Confirmation page is displayed and your request has been sent to your Administrator. Note: The reference number is provided and should be used if you need to contact Customer Service for support with SAM related issues or questions 4. You will receive an email confirming that your request has been received. No further action is required on your part at this time. Your Organization Administrator will be notified of the pending request. 5. Once your request has been approved, you will receive an email notification. This email is very important as it contains link for account activation. Copyright 2017 Exostar, LLC All rights reserved. 31

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback