Enhanced User Credential Security on April 29
As part of our ongoing efforts to ensure the highest possible standard of data security and user privacy, we are excited to announce that Tortal will be implementing new user credential safety enhancements and password recovery procedures.
Effective April 29, 2019, there will be three minor process changes for LMS administrators.
1. Forgotten password process. Users with lost or forgotten passwords may reset their passwords via email using the “Retrieve it here” link on the LMS login screen. Users without email addresses may have their LMS passwords reset by their training manager/administrator, who will then be required to share the password with the user however they see fit.
2. Account creation. All new user accounts with a valid email address will receive a verification email upon account creation, allowing them to specify their password during verification.
3. Password reset. Similar to account creation, when an existing user requests a password reset, they will need to reset their password by clicking a security link in a password confirmation email sent to their email address.
There should be no action required of existing LMS users on or after April 29.
Tortal appreciates your understanding during this important security upgrade. Please ensure all training managers/administrators are aware of the minor process changes that come into effect on April 29, and feel free to send us any questions at firstname.lastname@example.org.
FREQUENTLY ASKED QUESTIONS
Do I need to reset my password because of this new security update?
No. Your password is exactly the same as it was before this update.
Are email addresses now required when creating new accounts?
Your learning management system may require a valid email address upon registration or when creating a new user. If a valid email address is required you will see a red asterisk next to the email field.
I'm trying to recover my password, but I no longer have access to the email address that's in the system.
Contact your system administrator for a password reset. Their contact information is located at the bottom of your LMS homepage.
How does the password recovery feature work if multiple learners are using the same email address?
Although Tortal strongly recommends against this practice, we do realize this situation does occur. We suggest one administrator handle individual password resets for learners sharing an email address. That administrator must then communicate the password change to affected learners individually.
How come passwords can only be reset and not have the system send the current password?
In order to upgrade our security and comply with stringent new industry standards, we have changed our entire password storage approach. Passwords of the type we used to be able to email directly to users do not exist anymore in the Tortal LMS. Now, when a password is created, it is encrypted during storage and is no longer available for use in any kind of human-decipherable format.
How do I self-register for my learning management system?
View article Self registering for an LMS.
How do I reset my password?
View article Resetting your password
I can't log into my account. What should I do?
View article Troubleshooting login problems.
ARTICLES FOR ADMINISTRATORS
How do I create an account for a User? (Not available on all LMS)
View article - Creating a user account.
How do I verify an email address for a user?
View article - Verifying an email address for a user.
How do I change a password for a user?
View article - Change Password for a learner.