Knowing when a student (user) has logged in and changed their password

Follow

Andrew Panes

• 18 May 2020 01:00

We are experiencing big issues with passwords for online assessments only being valid for 48 hours. It is clear that aXcelerate will not be changing this (for whatever reason) so it would be good if they would consider the following. 

Display in axcelerate when the participant has logged in and changed their password. 

Heres an example of why this would be beneficial. 

1. A student enrolls for a course that requires some elearning prior to face-to-face session

2. The face to face session is on a Monday

3. Admin checks to see if they have completed the elearning on the Friday prior but can see that it is not completed

4. Admin calls the participant to see if they have logged in and changed their password but is unable to get hold of the student

At this point, we dont know if they have changed their password within the 48 hour period. If they have not and are planning to log in over the weekend to complete the learning, they will be unable to access the system. 

If you could view in axcelerate that they had not logged in, you could manually reset the password before closing for the week and email the student the new password. 

Hope this all makes sense. 

3

• 

  Mark Costello

  • 18 May 2020 02:50

  aXcelerate should provide an audit log of all actions by users, including logins and password changes. It is basic functionality that provides additional security, enables troubleshooting of problems and keeps people accountable when accessing the significant amount of personal information contained in the database.

  The 48 hour link expiry would make sense if it was generated by the user but when it is generated by the organisation it would be more appropriate to extend it to a 7 day expiry.

  3

  Comment actions Permalink

Please sign in to leave a comment.