How frequently should the password by changed in RCP?
RCP requires every 180 days a password reset due to safety requirements.
Openproviders current password policy logic is described below.
1. Reseller set up data, password, registers an account with RCP, password is not changing, reseller works under its record;
2. After 150 days (30 days before the expiration of 180 days), a notification appears with a request to change the password (the screenshot is presented for example);
It looks like this (an example):
In the lower left corner there is an opportunity not to change the password, leaving active the same as been before; in the right corner - ability to change.
3. If the reseller does not change the password, after a full 180 days from the moment of registration after signing into the RCP, a window will appear where it will be necessary to forcibly change the password: the procedure is described in one of the newsletters for May 2017 If reseller does not change the password, the reseller will not be able to use RCP, but the API access will work as before.
4. If the reseller changes the password, it is also necessary to change the API access, because the old password and hash will not work for API requests! The new hash value will be shown after changing the password. The reseller can change the hash later on the Account > Representatives > Change > Hash Password page.
Frequently asked questions
Q: Is it true that if the reseller doesn't change the password after 180 days, nothing happens to our account and we continue to use it with the old password as before?
A: After 180 days the password in RCP will need to be changed, but the reseller will not be able to log in to RCP without change (this does not apply to API acess, which will work even if you do not change the password)