TPE Account Login, Set Up and Maintenance
This video and the article below describe the log in and account set up process for new TPE users. There is information below in the Maintenance section that is not included in the video. Use these quick links to jump to the associated section of this article.
Initial Login
This is the first step after receiving your TPE login information from the Oregon E-Government Service Desk.
This video is roughly 2 minutes long.
The Steps to Log in Initially
- Receive your login information from the Service Desk
- Navigate to:
- Production: https://tpe2admin-or.cdc.nicusa.com/Oregon/Login.aspx
- UAT (Test): https://tpe2admin-uat.cdc.nicusa.com/uat/Login.aspx Updated since video was created
- Enter your login information
- Set a secure password
- Set 3 security questions and answers
- Start using TPE
Account Maintenance
Occasionally changes occur to contact information and this should be updated in your user record in TPE.
To make updates, login to your account and use the drop menu at your user name and choose 'Account Settings'.
All aspects of the account settings are editable except for the username. The username is the unique identifier of the system so cannot be changed. To change a username a new user request should be initiated along with a request to de-activate the account with the old username. When a change does occur, be sure to update your email address and or phone number to reflect your new contact information. Incorrect email addresses are the single largest barrier to self service of TPE user accounts.
If a change happens that causes you to no longer need your TPE access, please let your manager know right away that a request should be made to the Service Desk to de-activate your account.
Account Statuses
There are three conditions for TPE accounts:
- Active - These users have access to TPE Admin in the role requested for their account
- Inactive - These users are unable to login because they have either:
- not accessed TPE Admin in the past 90 days and are unable to log in to TPE Admin for security reasons.
or - entered an invalid password 5 consecutive times within a short time period and are unable to log in to TPE Admin for security reasons.
- not accessed TPE Admin in the past 90 days and are unable to log in to TPE Admin for security reasons.
- Disabled - These users have been manually disabled by an administrator and are not able to login to TPE Admin. Disabled users are deleted each year at the time of the TPE user audit.
Account Notifications
Active users that have not logged in for 60 days will receive a notification letting them know that their account will be locked out due to inactivity if they do not log in before the 90 days is up. These notifications can look something like this:
Similar notices are sent to users at the 75 day mark and each day after that until the account is locked.
Once an account is locked, the Service Desk must unlock the account and issue a temporary password for the user to login and establish a new secure password.
Passwords
TPE password secrecy is vital to protect the integrity of the application.
- ALWAYS - use your own login account to access TPE. Never another person's login information.
- ALWAYS - protect your login information and never share, even with your supervisor.
TPE passwords expire and must be changed every 90 days or less to ensure compliance with state information security guidelines and maintain the integrity of the information in the application. We recommend setting reminders to change TPE passwords as no notifications are sent for password expiration from the TPE application.
Password Requirements
Passwords must contain:
- At least 8 but not more than 20 characters
- At least one upper case letter
- At least one lower case letter
- At least one number
- At least one special character (@ % + ! # $ ^ ? : . () {} [] ~ - _)
- No dictionary words or other common text patterns
TPE runs potential passwords through a process to ensure that these requirements are met. Words with special character and or number substitutions for certain letters may get caught and flagged as unacceptable so it is best to steer clear of derivations of words.
As an example, lets say you wanted to use the name of the street that your office is on as your password but you know that CommercialStreet would probably be flagged by the application. Simply substituting 3s for e's and ! for the i may still get flagged by TPE as unacceptable as it can recognize many common letter substitution techniques which are easily compromised and nowhere near as secure as a maximum length random character string.
The best practice here is to use a random password generator. They can be found online and many are free to use. Just remember to update your password in your password manager when you change it.
Expired Passwords
As described above, passwords expire every 90 days. At and after the 90 day mark the TPE login page will refuse login until a new password is established. Users may establish a new password using the forgotten password feature on the login page.
No notifications are sent to users who regularly login concerning password expiry so it is recommended that users create a reminder on their calendars concerning the need to create a new password at those 90 day intervals.
When a password is reset, the 90 day clock begins again.
Comments
1 comment
Is my clam processed yet
Please sign in to leave a comment.