Authentication

There are two different methods available for authentication: single sign-on (SSO) and stand-alone account management.

Single Sign-On (SSO)

SSO allows customers to use the same username and password to access the web portal and any other web applications provided by a utility. All usernames and passwords are created, maintained, and updated on the utility's web site. Oracle Utilities uses Security Assertion Markup Language (SAML) 2.0 to implement SSO with utilities. Moreover, Oracle Utilities supports Identity Provider (IdP) Initiated and Service Provider (SP) Initiated SSO using HTTP POST binding. As part of the SSO implementation process, the utility must provide a SAML Metadata file and a SAML insertion with required information. This allows Oracle Utilities to identify the customer and authenticate the request. See the Oracle Utilities Opower SSO Configuration Guide for details.

SSO requires that all authentication is handled by the utility's website. After a customer has been authenticated using the utility website sign-in options, the customer has access to all features and pages of the Digital Self Service - Energy Management Web Portal. This can include individually hosted Digital Self Service - Energy Management Web Portal pages as well as Digital Self Service - Energy Management content that has been embedded directly within the utility's website.

Note: Since SSO credentials are maintained by the utility's web site, customers cannot use the Account Center in the Digital Self Service - Energy Management Web Portal to change their password.

Back to Top

Stand-alone Authentication

Stand-alone account management requires customers to create a Digital Self Service - Energy Management Web Portal account (including a username and password) that is separate from any other utility-provided web applications or accounts. When stand-alone account management is implemented, customers can access the Digital Self Service - Energy Management Web Portal by navigating directly to it and creating a new account once they get there.

The following account management options are available for stand-alone authentication customers.

Back to Top

Account Creation

The landing page of the Digital Self Service - Energy Management Web Portal provides customers an option to create a new account. New customers are often directed to this landing page through communications such as Home Energy Reports.

Confirming the Customer's Account: Customers creating a new account must provide their name and account number exactly as it appears on their Home Energy Report or utility bill. If a customer provides incorrect information, error messages are displayed which help guide the user in how to provide the information accurately.

Entering an Email and Password: After a customer provides accurate account information, they must provide an email and password for their new account. Passwords must be at least eight characters in length, and must not be or contain the customer’s name or email address. Depending on the utility's setup and configuration, the following additional password requirements may apply:

  • Minimum number of digits
  • Minimum number of special characters
  • Minimum lower case characters
  • Minimum upper case characters
  • Must be different than previous password

Completing this step sends a confirmation email to the email address the customer supplied, which the customer then uses to verify the email address.

Back to Top

Account Sign In and Sign Out

Customers who have created their account can use their account email address and password to sign in from the landing page. A standard link is available throughout the Digital Self Service - Energy Management Web Portal for signing out. By default, the session lasts for 30 minutes before timeout, at which point the user is automatically signed out.

Back to Top

Password Reset

Customers can request a password reset if they have forgotten their current password. To complete this process, a customer first selects the Forgot password? option included with the account sign-in options. The customer is prompted to enter their utility account email address, to which a reset password email is sent. The email includes a link that directs the customer to a reset your password page, which prompts the customer to create and confirm their new password.

Note: If a customer knows their password and wants to change it, they can use the Account Center rather than using the password reset feature. See Account Center for more information.

Back to Top