FBK network access credentials

Anyone holding a formal relationship with FBK will receive login credentials for the services from the Digital Solutions and IT Infrastructure Service, who will verify compliance with contractual and fiscal requirements and contributions, as well as those relating to worker security and internal access procedures.

Access credentials for trusted networks

The Service will deliver the credentials, in a sealed envelope, directly to the user or to the secretariat of reference.

They are composed of a username and an OTP - One Time Password - that is, valid for a single login session and which must therefore be changed immediately by connecting to myaccount.microsoft.com and following the instructions. During the process you will also be asked to activate MFA Multi-Factor Authentication. This configuration, mandatory for accessing FBK services, requires that you have already installed an OTP generator (for example Microsoft or Google Authenticator) on your smartphone or similar programs on your PC.

All the instructions and the configuration guide can be found at this link.

Once changed, these credentials are used to access services such as email, VPNs, the Intranet, etc.

 

Password expiry and change


Password expiry

Thanks to additional security measures adopted (implementation of MFA also within FBK buildings and use of OTP for access instead of the telephone), the six-monthly password change was eliminated on 15/10/2024. In addition to reducing the time for configuring or updating networks and devices, this avoids the inconvenience of having to periodically generate and remember new passwords or reset forgotten ones.

Password change

How to change the password differs depending on two factors: whether the computer is self-managed or managed by IT and whether the computer is physically in the Foundation or not.

  • Computer in FBK and managed by IT:
    • Windows: press the ctrl-alt-del keys and choose the "change password" option. 

    • Linux: you can use the "passwd" command.

    • In all other cases:

Connect to https://mysignins.microsoft.com/

Enter with the FBK credential <user>@fbk.eu and password:

Choose "Overview" in the menu on the left:

Choose "Change Password"

Enter the old password and the new password twice and press "submit", the complexity rules remain the same as before:

Log out by choosing "Sign Out" in the menu at the top right:

This will also change your FBK password for Google services, which may take up to 30 seconds to take effect.

Strong password

Pursuant to Legislative Decree n. 196/03, passwords must satisfy the following rules:

  • must be at least 8 characters long
  • must contain characters that belong to at least 3 of the following categories:
    • capitals letters (from A to Z)
    • small letters (from a to z)
    • digits (from 0 to 9)
    • symbols (e.g.: !, $, #, %)

The new password must be different from your previous 15 passwords. 

The directory services system will accept only passwords satisfying such requirements.

Credentials expiration

Network credentials are valid during your whole FBK working period and automatically expire at its end.

15 days before the account expiration date, the directory service system will notify users on a daily basis via e-mail.

Access credentials for untrusted networks

Anyone who has a formalized relationship with FBK or is an FBK guest can connect to FBK's untrusted networks, Eduroam or FBK-Guests. Untrusted networks are low-security environments, with indirect access to storage, processing, printing, and other resources.

Eduroam (https://www.eduroam.org) is a service that offers secure wireless access to all research centers and universities that join the initiative. Roaming users who visit an Eduroam center can use the local wireless network (WLAN) using the same credentials (username and password) that they would use in their home institution, without the need for further formalities at the host center.

All areas of FBK offices are covered by the FBK-Guests WiFi network, an open network, designed for browsing only: in fact, the devices connected to it do not communicate with each other and connections via Meet, Teams and Zoom may present difficulties and insufficient performance. To authenticate to the network, which is necessary for all users (employees and guests), you will need to have a working e-mail address or a personal Google profile.

For further information, please consult the link.

Notes for Mac users

In case of problems with MacOS systems from the untrusted network, check the following settings: