Contact the Keystone Login Help Desk for all questions, concerns and issues with Keystone Login. The help desk can be reached by phone at 877-328-0995 or by email at KeystoneLoginSupport@randstadusa.com.
Select any of the following Release Numbers to review previous end-of-sprint deployment updates and fixes for Keystone Login
Updates:
- KL Web:
o Added Apple Touch Icon.
o Removed remaining references to My Organization.
Bug Fixes:
- KL Web:
o Corrected syntax error in Security Question validation.
o Fixed ReCAPTCHA issue.
Updates:
KL Web:
- Keystone Login converted from .Net 6.0 Framework to .Net 7.0
- Current functionality is not affected.
- The only noticeable change is developer access to Swagger changed URLs:
* Service – https://keystonelogin.service.beta.pa.gov/swagger/index.html
* External - https://keystonelogin.external.beta.pa.gov/swagger/index.html
Updates:
- KL Web:
o The extra call to Login via Site Minder has been removed.
o Separate counters have been added to track failed login attempts for multiple login IDs.
- KL:
o Updated more automated tests.
Bug Fixes:
- KL Web:
o Authorization reason in Production.
o Forgot Password would throw an exception if phone numbers were shorter than seven digits.
Updates:
- KL Web:
• Users can now unlock their account without contacting the help desk.
• Users now receive a warning before their account locks due to multiple unsuccessful login attempts.
• The correct message now displays when accounts are locked or disabled.
- KL:
• Updated automated tests.
Updates:
- KL Admin:
• Uploaded new version of the Keystone Login Help Desk Guide.
- KL Web:
• Updated ‘Keystone ID’ and ‘Email Already in Use’ information in KL FAQs.
• Uploaded new version of the Keystone Login User Guide.
• Hid Change Password, Edit Account, and Manage Social Logins options
from MUSER and CWOPA users.
• Correct domain name is displayed in user greeting.
• Correct message is displayed when login fails due to account being locked or disabled.
• A warning message is displayed after second failed login attempt.
• Distinguished between locked and disabled accounts in login fail messages.
• User permitted to unlock their locked or disabled account.
• Added SMS consent text to User Registration, Edit Account, and OTP Options pages.
• Added Email, Phone Number, and Text Message usage information to the KL FAQs.
• Added details to the SMS OTP message including expiration information.
• Added SMS OTP as an option to Forgot Password process.
• Updated Username creation restriction text.
Bug Fixes:
- KL Admin:
• Added an exact search option to User Search page in Admin tool.
- KL Web:
• Issue with My Organization. Login issue with RBMFA enabled accounts after redirection
from an app requiring MFA.
• Multifactor accounts are not challenged during login. No expired passcode message in Forgot
Password. Antlr3, Modernizr, Newtonsoft, Owin, and Respond libraries returned in security scan.