Password Management

Strong passwords, when updated regularly, go a long way to protecting you online.

Here are the requirements for creating a password for use with the mySMCCD portal:

  • Minimum of 12 characters
  • Upper case letter(s)
  • Lower case letter(s)
  • Number(s)
  • Special character(s)

Additionally, consider the following when managing your passwords:

  • Change your password on a regular schedule–At least once per year
  • Do not use the same password across multiple sites, apps, and services
  • Avoid use of obvious words within your password
  • Consider using a password manager to help make managing strong passwords easier

Want to reset your SMCCD password?

To reset or change your password, see Resetting/Changing your Password using OneLogin (for employees) or the student email password reset or student mySMCCD portal password reset pages as needed.

Learn more about this topic

Learn more about creating and remembering strong passwords, or watch the Cybersecurity Flex Day presentation (Daman Grewal, January 2021).

How to enable multi-factor authentication (MFA) on your OneLogin account

If you need to enable multi-factor authentication (MFA) on your OneLogin account, follow the instructions provided below.

Why do I need MFA?

Multi-factor authentication (MFA) adds an extra layer of security to applications accessed through your OneLogin single sign-on account.

SMCCCD staff and faculty may be required to use MFA to access certain applications from off campus, such as VPN or Alma.

How do I set up MFA on my OneLogin account?

Follow the steps below to set up MFA on your OneLogin account.

  1. Login to OneLogin, with username and password
    (Example: jdoe, do not use full email address)
  2. If prompted, follow prompts to set up MFA
  3. Edit your profile phone number as follows
    OneLogin profile menu options
    1. Select “Profile” in your account drop down menu
    2. Verify your mobile phone number is added to your account, update as needed
      OneLogin profile update phone option
    3. Save
      OneLogin update phone number
  4. Select “+” to add 2-factor authentication
    Add 2-factor authentication
    1. Set up OneLogin Protect as default method
      (This uses the OneLogin Protect mobile app)
      Select OneLogin Protect
      1. Download “OneLogin Protect” from your phone’s app store
        OneLogin Protect mobile app
      2. From OneLogin Protect app, select “+” to add your account
        OneLogin Protect mobile app add account feature
      3. Using the app, scan the QR code on your computer’s OneLogin account settings page. Once scanned, a green check mark verify the scan has been accepted.
      4. Your mobile app will display your “smccd” account, and a code that refreshes every 30 seconds
        OneLogin Protect app account settings
      5. You have now successfully set up OneLogin Protect as a 2 factor authentication option
        OneLogin Protect 2-factor authentication added
    2. Set up OneLogin SMS as additional 2-factor authentication method
      Note: OneLogin SMS (2-factor authentication via text message) is recommended as an additional method, rather than the default method because it will not work if roaming text is not allowed on your mobile device for any reason such as when traveling internationally
      1. Select “+” to add an additional authentication method
      2. Choose OneLogin SMS as the vendor method
        Select OneLogin SMS
      3. Click the link to “Send Security Code to mobile”
      4. Enter the security code received via text on your mobile device in the “Security Code” box
      5. Select “Continue”
      6. You have successfully added OneLogin SMS as an additional 2-Factor Method
  5. You may choose either method to be your default, depending on your needs
  6. When logging in to OneLogin apps, you may be prompted to use MFA

Printable instructions (.doc)

Credit: Instructions are a modified version of those written by Aaron Soo of SMCCCD ITS.