My Account: Unterschied zwischen den Versionen

Aus BIS Wiki
 
(13 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 6: Zeile 6:
:https://login.uni-bielefeld.de/kv/
:https://login.uni-bielefeld.de/kv/


On this page, you will see the logins or login attempts of the last seven days with your login credentials. The overview is designed to help you detect possible password thefts or attempts. You may also be here due to a notification regarding an account lock or a login from an unknown device. At the end of the page, we explain which notifications appear here.
On this page you can see the logins or login attempts of the last seven days with your login data and information about the device you are using. This overview should help you to recognise possible password thefts or attempts. You may also be here because of an account lockout notification or a [[Unknown device|login from an unknown device]]. On this page, we explain what information appears here and how it can be interpreted:


== Someone is trying to steal my password ==
== Someone is trying to steal my password ==
 
If someone tries to steal your web password and tries through passwords, you will see a lot of incorrect login attempts on this page that you cannot explain with your own activities. The login form slows down attackers here so that they cannot try out as many passwords as they like in a short space of time. You may also have received a notification that your login has been temporarily blocked because too many incorrect logins have been attempted. Nevertheless, in such a case you should:
If someone is trying to steal your web password by attempting various passwords, you would see a number of failed login attempts on this page that you cannot explain by your own activities. The login form prevents attackers from testing an unlimited number of passwords in a short time. Nevertheless, in such a case, you should:
 
* Get an even [https://login.uni-bielefeld.de/kv/password stronger web password]
* Get an even [https://login.uni-bielefeld.de/kv/password stronger web password]
* Enable two-factor authentication (see the following section)
* Enable two-factor authentication (see the following section)
* {{BISKontakt_en|Contact us}}
* Keep an eye on the 'My Activities' page in the following days
* Keep an eye on the 'My Activities' page in the following days


== Someone has already stolen my password! ==
== Someone has already stolen my password! ==


If a password theft has already occurred and your access is being misused, you would see successful logins at times that you cannot explain by your own activities. You should also have received an email notifying you of a login from an unknown device.
If a password theft has already occurred and your access is being misused, you would see successful logins at times that you cannot explain by your own activities. You should also have received an email notifying you of a [[Unknown device|login from an unknown device]].


Here you need to '''act quickly''' so that you do not lose control over your access and to stop the activities that a foreign person is carrying out in your name in the system:
Here you need to '''act quickly''' so that you do not lose control over your access and to stop the activities that a foreign person is carrying out in your name in the system:


* [https://login.uni-bielefeld.de/kv/password Set a new, stronger web password immediately]
* [https://login.uni-bielefeld.de/kv/password Set a new, stronger web password immediately]
* Then, contact us right away
* Activate two-factor authentication (see the following section)
* Activate two-factor authentication (see the following section)
* Follow the further instructions on the page on notifications for [[Unknown device|logins from unknown devices]]


== Secure passwords and two-factor authentication ==
== Secure passwords and two-factor authentication ==
Zeile 32: Zeile 29:


An even more effective means of increasing the security of your access is the {{2FA_en|use of two-factor authentication}}, which can be activated in a few steps.
An even more effective means of increasing the security of your access is the {{2FA_en|use of two-factor authentication}}, which can be activated in a few steps.
== My current device ==
Under this item you will see two details about the device you are currently using (laptop / smartphone), which can be particularly helpful for checking [[Unknown device|Notifications for logins from unknown devices]]:
* The operating system and web browser you are currently using
* The current IP address of your device
You can compare this information with the information you find in the e-mail notifications for unknown devices. Please also note the [[Unknown device#Operating system and web browser|further information]] on the interpretation of this information.
== My devices ==
This point leads to the page with the list of devices that have access to your account. These are normally the devices on which you have installed the [https://www.uni-bielefeld.de/themen/campus-support/bis-hilfeseiten/bis-app/ 'Meine Uni' app]. You can delete devices that are no longer used here.


== Notifications from the login system ==  
== Notifications from the login system ==  
Zeile 43: Zeile 51:
=== Login with your login from an unknown device ===  
=== Login with your login from an unknown device ===  


Since August 21, 2024, the login system sends notifications when you log in for the first time on a new device. This is intended to enable you to recognize and stop the theft of your login data yourself. You can find extensive descriptions of how this function works in [https://blogs.uni-bielefeld.de/blog/bisnews/entry/umstellung-des-bis-logins-auf this blogpost (in german language)].
Since August 21, 2024, the login system sends notifications when you log in for the first time on a new device. This is intended to enable you to recognize and stop the theft of your login data yourself. You can find extensive descriptions of how this function works in [[Unknown device|this comprehensive page]]


=== Activation and deactivation of two-factor authentication ===  
=== Activation and deactivation of two-factor authentication ===  
Zeile 59: Zeile 67:


The first address found in this sequence will be used. The display shows from which source the email address originates. If you want security-related emails to go to a different address, changing the eKVV address is the simplest way.
The first address found in this sequence will be used. The display shows from which source the email address originates. If you want security-related emails to go to a different address, changing the eKVV address is the simplest way.
== The additional password ==
The so-called 'additional password' is a password for some special BIS applications. This function is only relevant for persons who have received corresponding instructions from BIS Support.
The purpose of the additional password is to be able to use a secure password in places where the other security functions of the login cannot take effect. The password is therefore not entered by you, but is generated by the system as a random value.
You can enter an additional password on the page '[https://login.uni-bielefeld.de/kv/ My Account]', the corresponding option is available in the right-hand side menu. The additional password is displayed on the page immediately after it has been generated; you can copy it out here and save it in a password manager, for example.
If you no longer know the additional password, you can simply delete it and generate a new one, which replaces the form additional password.

Aktuelle Version vom 29. August 2024, 06:42 Uhr

AUTOMATIC TRANSLATION OF THIS PAGE IN GERMAN

Here you will find information about the page 'My Account', which can be accessed in the account management at this address:

https://login.uni-bielefeld.de/kv/

On this page you can see the logins or login attempts of the last seven days with your login data and information about the device you are using. This overview should help you to recognise possible password thefts or attempts. You may also be here because of an account lockout notification or a login from an unknown device. On this page, we explain what information appears here and how it can be interpreted:

Someone is trying to steal my password

If someone tries to steal your web password and tries through passwords, you will see a lot of incorrect login attempts on this page that you cannot explain with your own activities. The login form slows down attackers here so that they cannot try out as many passwords as they like in a short space of time. You may also have received a notification that your login has been temporarily blocked because too many incorrect logins have been attempted. Nevertheless, in such a case you should:

  • Get an even stronger web password
  • Enable two-factor authentication (see the following section)
  • Keep an eye on the 'My Activities' page in the following days

Someone has already stolen my password!

If a password theft has already occurred and your access is being misused, you would see successful logins at times that you cannot explain by your own activities. You should also have received an email notifying you of a login from an unknown device.

Here you need to act quickly so that you do not lose control over your access and to stop the activities that a foreign person is carrying out in your name in the system:

Secure passwords and two-factor authentication

We have gathered tips for choosing a secure password on this page for you.

An even more effective means of increasing the security of your access is the use of two-factor authentication, which can be activated in a few steps.

My current device

Under this item you will see two details about the device you are currently using (laptop / smartphone), which can be particularly helpful for checking Notifications for logins from unknown devices:

  • The operating system and web browser you are currently using
  • The current IP address of your device

You can compare this information with the information you find in the e-mail notifications for unknown devices. Please also note the further information on the interpretation of this information.

My devices

This point leads to the page with the list of devices that have access to your account. These are normally the devices on which you have installed the 'Meine Uni' app. You can delete devices that are no longer used here.

Notifications from the login system

The login system sends you emails in certain cases to inform you about important events for the security of your login:

Temporary lock of your login

To prevent the theft of your web password, a temporary lock of your login is created after a certain number of failed login attempts. During the lock period, no logins are possible. You will be informed about the lock and its duration via email.

Login with your login from an unknown device

Since August 21, 2024, the login system sends notifications when you log in for the first time on a new device. This is intended to enable you to recognize and stop the theft of your login data yourself. You can find extensive descriptions of how this function works in this comprehensive page

Activation and deactivation of two-factor authentication

Changes to the use of two-factor authentication also trigger notifications to provide usage hints, but also to recognize when outsiders are tampering with your login.

Email address for security-related information

The email address to which the system sends security-related information is displayed in the page menu. The system determines the address from several sources, in this order:

  • The address registered in the eKVV, see the eKVV page 'My Email Address'. Employees can also generally enter their own addresses here.
  • The personal address registered in the PEVZ. No functional addresses are used.
  • Your own BITS mailbox.
  • The private email address registered in the PRISMA portal (found in the 'Meine Daten' section).

The first address found in this sequence will be used. The display shows from which source the email address originates. If you want security-related emails to go to a different address, changing the eKVV address is the simplest way.

The additional password

The so-called 'additional password' is a password for some special BIS applications. This function is only relevant for persons who have received corresponding instructions from BIS Support.

The purpose of the additional password is to be able to use a secure password in places where the other security functions of the login cannot take effect. The password is therefore not entered by you, but is generated by the system as a random value.

You can enter an additional password on the page 'My Account', the corresponding option is available in the right-hand side menu. The additional password is displayed on the page immediately after it has been generated; you can copy it out here and save it in a password manager, for example.

If you no longer know the additional password, you can simply delete it and generate a new one, which replaces the form additional password.