Topics Map > Accounts and passwords

Identity Management, Requesting or Renewing Access to ISA

Individuals with the power to reset Illinois passwords using the IAM Account Support Application (ISA) are called "Password Registrars". Password Registrars can assist with resetting passwords, updating recovery settings, and generating 2FA bypass codes. The ability to generate password tokens will be limited to particular groups (e.g. for a specific department only), times of day (e.g. during weekday mornings only), or even by IP address (e.g. at a specific workstation computer only).

Requirements for Access

A Password Registrar is responsible for upholding the Illinois Appropriate Use Policy and respecting the privacy of users. They must be especially aware that Illinois passwords must not be shared. A compromised password may affect not only the individual, but also other users on campus or the internet.

A Password Registrar must agree to the following:

  • To generate a password reset token only by explicit request of the account holder.
  • To never learn a NetID password or reveal a NetID password to others.
  • To maintain the security of their own Illinois account and prevent unauthorized access to ISA, including the security of any devices that may be logged into it.
  • To never use someone else's password to gain access to accounts or services.
  • To reset the password recovery settings for someone only if their contact information already exists in Banner or after positively confirming the owner's identity, preferably by an Illinois photo ID.

Requesting ISA Access

ISA is a sensitive tool by design. Access must be handled carefully. A manager, director, department head, or Unit Security Contact (USC) is required to fill out and submit the form. You cannot request Password Registrar access for yourself.

Instructions for managers, directors, department heads, or Unit Security Contacts:

  1. Fill out the Request for Password Registrar Access form for the user that needs access to ISA.
  2. Email the completed form to consult@illinois.edu.
  3. Wait for an email notification from the Help Desk regarding whether the request has been approved or denied.

Renewing ISA Access

Access is only granted for one year at a time. Password Registrars will be notified by email when their access is due to expire, and they can request that it be renewed.

  • If no changes to your current access are needed (e.g. access times, IP addresses), send an email from your Illinois account to consult@illinois.edu stating that you wish to renew your ISA access and that no changes are needed.
    • You can request your own ISA renewal without the involvement of a security contact.
  • If changes are required, please submit a new Request for Password Registrar Access form according to the rules in the Requesting ISA Access section.

Keywords:
registrar, ISA, IAM Support Application, identity and access management, identity.uillinois.edu, change password, change, expire, expiration, form 
Doc ID:
49170
Owned by:
Help Desk T. in University of Illinois Technology Services
Created:
2015-03-18
Updated:
2024-11-22
Sites:
University of Illinois Technology Services