Skip to main content
⚠ INFORMATION
This page was translated by an AI (LLM) with a cursory human check and is awaiting full review.

Password Management

Logging in to Jean Zay is done by entering your login and the associated password.

For your first login, you must use an initial password that will be changed immediately (via an automatic procedure), to define your current password.

The Initial Password

What is the initial password?

The initial password is the result of concatenating two passwords in the following order:

  1. Firstly, the password randomly generated by IDRIS, which is sent to you by email when your account is opened and when your password is reset. It remains valid for 20 days.
  2. Secondly, the initial user password (8 characters), which you must provide:
    • when requesting the opening of your account (if you are a new user) on the eDARI portal ;
    • when requesting a reset of the initial password in the Account Management Form (FGC).
      Note: for a user whose account was created in 2014 or earlier, it consists of the initial password indicated in the last letter received from IDRIS.
Important

This initial password must be changed within 20 days of receiving the email containing the randomly generated password (see below the paragraph entitled "Using the initial password"). After this 20-day period, the initial password is invalidated and an email is sent to inform you. You just need to contact the address gestutil@idris.fr to request the reset of the random part of the initial password, which is then sent back to you by email.

The initial password is (re)generated in the following cases:

  • Account reopening: an initial password is assigned when each account is created, but also when a closed account is reopened.
  • Forgotten password:
    • If you lose your current password, contact the address gestutil@idris.fr to request the reset of the random part of the initial password, which is then sent back to you by email; you will also need your initial user password.
    • If you have also lost your initial user password (part that you provided yourself in the eDARI portal or received in the letter from IDRIS before 2014 when requesting the creation of the account), you must fill in the section entitled "Reset of the user part of the initial password" in the FGC, print and sign it, then send it by email to gestutil@idris.fr or by post. You will then receive an email in which a new random password will be communicated to you.

Using the initial password on first login

Here is an example of a first login with the entry of the initial password for the account login_idris on the IDRIS machine.

Attention

On the first login, the initial password is requested twice. Once to establish the connection on the machine and a second time by the password change procedure which is then automatically executed.

Recommendation

As you are required to change the initial password on your first login, carefully prepare another password that complies with the rules for creating current passwords at IDRIS before starting the procedure.

ssh login_idris@machine_idris.idris.frpassword  # First request for the INITIAL PASSWORDLast login: Fri Nov 28 10:20:22 2042 from machine_idris.idris.frWARNING: Your password has expired.You must change your password now and login again!Changing password for user login_idris.Enter login(    ) password:       # Second request   INITIAL PASSWORDNew password:                     # Enter    NEW PASSWORD chosenRetype new password:              # Confirm NEW PASSWORD chosen     password information changed for login_idrispasswd: all authentication tokens updated successfully.Connection to machine_idris closed.
Note

Being immediately disconnected as soon as the new password chosen is accepted (see all authentication tokens updated successfully) is normal.

You can now log in with the new current password that you have just registered.

The Current Password

Once chosen correctly, its validity period is one year (365 days).

How to change your current password?

You can change your password using the UNIX command passwd on the login node of the machine. The change is immediate and effective on all nodes of the machine. The validity of this new current password is also one year (365 days).

Rules for creating current passwords:

  • They must contain a minimum of 12 characters.
  • These characters must belong to at least 3 families of characters among the following 4:
    • uppercase,
    • lowercase,
    • digits,
    • special characters.
  • A password must not contain the same character more than two consecutive times.
  • It must not be composed of words from dictionaries, nor trivial combinations (1234, azerty, ...).
Note

A new password cannot be modified for 5 days. It is always possible, in case of necessity, to contact Support assist@idris.fr to request a password reset. A history of the last 6 passwords is kept, in order to reject a recently used password.

Forgotten or expired current password

If you have forgotten your current password or if, despite the warning emails, you have not changed your current password before its expiration date (one year after the last change) then your password will be invalidated.

You must then contact the address gestutil@idris.fr to request the reset of the random part of the initial password, which is then sent back to you by email.

Note

You will also need the user part of your initial password to be able to log in to the machine after this reset which only concerns the random IDRIS part of the initial password. Indeed, you will have to follow the procedure corresponding to a use of the initial password on first login.

Account blocked after 15 unsuccessful logins:

If your account is blocked after 15 unsuccessful attempts, you must contact IDRIS support at the address assist@idris.fr.

Reminder about the security of your account

Never communicate your password in plain text in an electronic message, even those addressed to IDRIS (Support, User Management, etc.) and this, whatever the reason: we would then be obliged to immediately generate a new initial password, in order to inhibit the current password that you would have thus published and to ensure that you define a new one at the next login.

Each account is strictly personal. Access to an account by an unauthorised person results, as soon as it is discovered, in immediate protective measures which may include blocking the account. As the holder of an account, you are required to take some elementary precautions of common sense:

  • immediately inform IDRIS of any attempt to violate your account,
  • follow the recommendations on the use of ssh keys,
  • protect your files by limiting the UNIX access rights,
  • do not use a password that is too simple,
  • protect your personal workstation.

Your opinion matters!

To give your feedback, report an error, or suggest an improvement, click here:

quick anonymous questionnaire

This questionnaire is temporary and will take less than a minute, so take the opportunity!