If you do not find an answer to your question(s) below, please contact us. We’d be happy to help you.
• What is a Super User?
• What is the difference between a Company Administrator (Super User) and a User Administrator (general user)?
• Why can’t User Administrators see all of the users of the company?
• Does the Cash Management login information include any “personal” information such as name, account number, social security number, etc.?
• What are the requirements for the User Password?
• After five failed logins, what message does the end user receive?
• Who can reset passwords?
• What are cookies?
• Does Cash Management utilize cookies?
• What measures are in place for Online Banking security?
Q: What is a Super User?
A: The Super User (Company Administrator) is an authorized signer on your Exchange Bank accounts and is designated by your company to handle your Online Banking administration. This user has access to all functionality as well as the ability to set up subsequent users with equal or lesser functionality. The Super User’s profile is set up by Exchange Bank and should either the Super User change or have issues logging on, they would contact the Online Banking Department at Exchange Bank at 707.524.3000.
Q: What is the difference between a Company Administrator (Super User) and a User Administrator(general user)?
A: A Company Administrator is set up by Exchange Bank at the time the Company profile is established. As stated above, this user has all functionality including the ability to set up subsequent users. User Administrators are set up by the Company Administrator and their functionality will be defined by the Company Administrator. A User Administrator cannot change their own functionality.
Q: Why can’t User Administrators see all of the users of the company?
A: The Company Administrator (Super User) is the only end user that can see ALL users of that company. The Company Administrator may assign other subordinate users to also be Administrators (to add additional users, do Activity Reporting, etc.) however a subordinate user who is also an Administrator will only be able to see and modify permissions for users who are not Administrators of any kind. Only the Company Administrator can make another user an Administrator.
Q: Does the Cash Management login information include any “personal” information such as name, account number, social security number, etc.?
A: Login information is defined by Exchange Bank. No personal information is required by the Cash Management system to log in.
Q: What are the requirements for the User Password?
A: Passwords can be 4–16 characters and must include a letter, a number and a special character.
Q: After five failed logins, what message does the end user receive?
A: The message instructs the user to contact their Company Administrator.
Q: Who can reset passwords?
A: The Company Administrator or User Administrator is responsible for resetting End User passwords. Exchange Bank can reset the Company password and the Company Administrator can change the Company password or an End User password.
Q: What are cookies?
A: A “cookie” is a small piece of information (a text file), which a web server can store temporarily with a web browser. Once the cookie is stored, the site’s web server can later retrieve that information for that browser.
For example, when a person browses through an “online shopping mall” and adds items to a “shopping cart” while continuing to shop, your browser stores a list of the items that have been added to the cart so that the user can pay for all of the items at once when he is finished shopping. It’s much more efficient for each browser to keep track of information like this than have web server remember who bought what, especially if there are thousands of people using the web server.
When browsing the web, any cookies that are sent to a browser are stored in the computer’s memory. When the browser is closed, any cookies that haven’t expired are written to a cookie file so they can be reloaded next time the browser is used.
Online banking uses a different kind of cookie known as a session cookie, a non–persistent cookie, or a pre–expired cookie. These cookies are placed temporarily and are never stored to the user’s computer memory. Instead, these pre–expired cookies are used as part of the stringent security measures in the Internet Banking product. As the end user navigates through Internet Banking a pre–expired cookie is set each time a page is viewed. Because the HTML page they are viewing is not “cached”, it must always be re–retrieved from the server.
The pre–expired cookies keep the session alive until the end user logs out properly or times out of Internet Banking. Once this occurs, the end user must login with their User ID and Password to gain access again. This ensures that another user using the same computer cannot access the previous session.
Q: Does Cash Management utilize cookies?
A: Yes, non–persistent cookies (also called session cookies). That means that cookie information is not permanently stored on the end–user’s computer thus giving you the ability to sign on from any computer.
Q: What measures are in place for Online Banking security?
A: Internet security overview: One of the basic tools used to ensure Internet security is encryption. Encryption involves exchanging numbers between the end user’s browser and the Internet banking server. The numbers act as keys to “unlock” the connection between browser and server, much like numbers on a combination lock. The higher the number of combinations, the less likely it is that an outside party could decipher the key and access sensitive information. It is also important to verify that only authorized users log into the Internet banking system. We use password verification to ensure user authorization. For added security, if a password is entered incorrectly five times, we automatically lock the Internet banking account.
We also “time out” an Internet banking session after a specified period of inactivity. This keeps others from viewing or continuing Internet banking activity if you leave your PC unattended.
We have structured our network architecture so that the servers which store your actual account information are NOT connected to the Internet. The requests you make through the Internet are handled by our Internet banking servers. All of our systems are secured with multiple layers of encryption.
* Requires Adobe Acrobat Reader to download this document.
This site contains links to other web sites, in order to assist users in locating and accessing information that may be of interest. Exchange Bank does not warrant linked sites for any purpose. Further, the inclusion of a link to another site does not constitute an endorsement by Exchange Bank of the site, its owner(s) or any products or services advertised on the linked site.