Hi all,
We are about to roll out Tessitura (very exciting) and I'm curious how other organisations manage security tasks such as reseting an Operators password, or unlocking their login if they try too many times?
Currently this capibility is restriced to our IT team who manage the Security module.
Does everyone have IT staff on call to perform these basic tasks, or do you allow Supervisors limited access to the Security Module?
Cheers,
Nicholas
Nicholas,
We allow users to reset their passwords themselves. We have a sharepoint site that allows the user to perform the password reset. We are making use of the email address fieldf in t_metusers to associate the sharepoint user with the Tessitura users. The password is set to temporary so that they have to reset it again when logging into Tessitura.
Jon
Hello, we've just launched 3 weeks ago and are now trying to figure out how to provide password resets without needing support from IT. We'll look for the shared report mentioned in TASK.
@Jon Ballinger can you describe a bit more about how the Sharepoint site works?
Thanks!
Hi Rose and John --
I took a look at the shared report in TASK a number of months ago and then reworked it into something that I think is much more functional and easy to configure and use. This version is shared via the Bitbucket site at https://bitbucket.org/TN_WebShare/password-reset-utility -- to obtain access, create a bitbucket account and then email web_dev@tessituranetwork.com.
Some features of my version of this utility:
- No user-level configuration is required except to grant access to the utility. The ability to reset passwords is wielded (by default) by users with admin group permissions, and users who are managers of user groups -- admins can reset passwords for anyone except other admins; managers can reset passwords for users in their managed group who are not group managers themselves. Accounts in designated TR_DEPTs can be omitted completely (for non-human service accounts).
- Managers doing the resets have zero knowledge of the password -- the recipient is simply emailed a random password and must change it upon first login.
- Each password reset is logged in a system table for reference.
This has been a huge success for my organization, mainly because I was the IT person doing all of the password resets, and now I don't have to do a thing! (Also, I was not happy with having to choose temporary passwords and communicate them to new users -- now I just set up the user with a random password and have their manager send them a reset email from this utility when they are being onboarded.)
More than happy to provide support for this utility if your IT people need it -- I worked really hard on making it as durable, functional, and organization-generic as I could, so I would love to see it used by other organizations.