Body
1Password is the chosen password manager for UTS. It is a hosted service. It contains shared passwords for services, accounts, etc., and can be used to store your personal credential information as well.
Who is Eligible?
Active Faculty or Staff
Gaining Access
You may request access through "Related Services / Offerings" on the right hand side of the screen.
Once you have created your account, you will need the following pieces of information to log in to one of the user interfaces.
- Email address
- Secret key (found in your 1Password Emergency Kit)
- Master password
- 2-factor code (if you configured 2-factor authentication)
Guest Accounts
For information on guest accounts, please see the 1Password documentation on guest accounts.
Emergency Kit
During the account setup process, 1Password will offer you an "1Password Emergency Kit". This "Emergency Kit" will contain the sign-in URL, your email address, your secret key (which you'll use to log in for the first time), and a field to enter your master password. The recommended practice at this time is to not store your master password on this document.
If you choose to print this document, store it in a locked filing cabinet. If you choose to save it electronically, make sure the file is encrypted or stored on an encrypted drive. The document can be later downloaded again from your 1Password account page.
Interfaces
There are a number of interfaces available for 1Password, including a web interface, a browser extension, a desktop application (available for macOS and Windows), and a command-line interface.
Web Interface
The web interface is accessible through oakland-university.1password.com. If you have not previously logged in to 1Password from the browser you are using, you will be prompted for the three pieces of information listed in Gaining Access. If you have previously logged in with the browser you are using, you will be prompted to select an account and to provide that account's master password (and the 2-factor code if you have it configured).
Once you have logged in, you should be greeted with an interface similar to the following:
Clicking on any of the available vaults will show you an interface similar to the following:
Browser Extension
The browser extension, titled "1Password X", is available for Google Chrome and Mozilla Firefox. You can download it from 1pasword.com/downloads, from the web interface under your account drop-down ("Get the Apps" link), or from your browser's add-ons/extensions interfaces.
Signing in to the browser extension is similar to signing in to the web interface. This extension allows you to search through all your available items (or limit your search to a specific vault), as well as auto-fill forms on webpages.
Desktop Application
The desktop application is available for download at 1pasword.com/downloads or from the web interface under your account drop-down ("Get the Apps" link). It is available for both Windows and macOS.
Mobile Clients
There are mobile clients available for iOS and Android. They can be downloaded through the platform's respective app stores, from 1pasword.com/downloads, or from the web interface under your account drop-down ("Get the Apps" link).
Command-Line Interface
There is also a command-line interface available for most platforms, including Windows, macOS, and GNU/Linux. See 1pasword.com/downloads or the "Get the Apps" link under your account in the web interface for more details.
Access
There are two types of structures in 1Password: Groups and Vaults. Vaults contain usernames, shared secrets, etc. Membership in a Group grants access to specific vaults. A list of all groups and vaults is available in the "Directory" vault in 1Password. Each entry in the "Directory" vault is tagged with either "Group" or "Vault". You can filter these from the left-hand column to see only one or the other.
To request access to a group, or, if you are unsure which group grants access to what vault, contact the director of your department.
Security Considerations
Watchtower
Watchtower is a tool within 1Password which analyzes the usernames and passwords in a vault. It checks a number of factors, such as general password strength and password re-use. It also checks whether the logins and passwords used in your vault have been identified by haveibeenpwned.com.
2-Factor
You can set up 2-factor authentication from your account profile. This is a recommended practice. You can use Duo as your authenticator app, which is used for other Oakland University services' 2-factor authentication.
Trash
Items moved to the trash do not automatically delete after a certain amount of time; they must be manually deleted from the trash. Please keep this in mind when deleting sensitive information.
Travel Mode
Travel mode allows you to travel with a select number of vaults (and no others) on your mobile devices. To do this, each vault you wish to use during travel must be configured as "safe for travel", and you must enable Travel Mode in your account. When Travel Mode is enabled on your account, your mobile device will show no indication that there are other vaults available; it will only show those you have selected for travel mode. This can be beneficial in the event your devices are confiscated while traveling.
See https://support.1password.com/travel-mode/ for more information.
Personal Use
Optional Private Vault
You have a "Private" vault in 1Password into which you can put anything you wish. No one but you has access to this vault.
Families Membership
Our agreement with 1Password gives each user a free "Families Membership", which allows you to use 1Password with other users.
See https://1password.com/families/ for more information.
Licensing
|
Team
|
Number of Licenses
|
In use as of 01/2021
|
|
EA
|
9
|
8
|
|
NCS
|
8
|
6
|
|
TSS
|
13
|
13
|
|
Security
|
3
|
3
|
Additional Support
- OU Technology Center
- 44 Oakland Center
- Rochester, MI 48309-4479
- (248) 370-4357
- Office Hours: M-F 8:00am - 5:00pm