MFA Onboarding Instructions for Faculty/Staff

 

SUNY Broome moves to MFA to further secure our Portal Logins. 

Multi-Factor Authentication (MFA) is a technology that protects your accounts from being hacked, phished, brute-forced, or otherwise compromised. MFA combines something you know (your username and password) with something you have (your cell phone or email account) in order to protect logins to your account.  SUNY Broome is again ahead of the curve when it comes to information systems and in this case, IT Security.

The current MFA roll out plan covers three (3) Tiers.

TIER 1 - Elevated Security Users - no Security Questions, no Trusted Device(s)

TIER 2 - Faculty & Staff - No Security Questions, Trust Device(s) allowed (trust lasts 30 days)

TIER 3 - Students - Security Questions allowed, Trusted Devices allowed (trust lasts 30 days)

Let’s move through the “Onboarding” of the MFA system.  This procedure only has to be done once and consists of these few steps.

  1. Go to MyCollege at  mycollege.sunybroome.edu
  2. Login using your Campus/BCCNET username and password.MyCollege log in screen
  3. Re-enter your password. A required step when going into this secured area. If you are seeing this screen after logging in, it means you haven’t onboarded with MFA yet and will be required to do so during the next steps.
  4. Set up your Account Recovery Settings (use for MFA answers).  Select "Get Started" under "Account Recovery Settings" on the left tab.
    Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The email recovery tab is highlighted. You need to enter your primary and secondary email addresses and select the update button.
  5. Fill out at least one recovery method. You can choose one, or all of them, but at least one second factor (email, phone) needs to be filled out besides your primary email, which is automatically set.
    • Enter a secondary email address. Your sunybroome.edu email address is automatically entered as the Primary verified email address. If you do use a secondary email address, it is recommended that you secure that account with MFA as well. Enter in a secondary email address and select “Verify” to send a 7-digit code to your email address.
      Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The email recovery tab is highlighted. You need to enter your primary and secondary email addresses and select the update button.
    • Enter your verification code. Enter in the 7-digit code that you received in your secondary email.
      Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The YubiKey Recovery tab is highlighted. You need to enter the verification code that was sent to your phone and select the Submit button.
    • You will see a green check mark next to your email address once it’s successfully verified.  The tab color will also turn green.
      Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The email recovery tab is highlighted. You will see your primary and secondary email addresses and a green check mark by each.
    • Enter your phone number. Enrolling your personal phone number is voluntary and is subject to your own phone rates. Select “verify” to send a 7-digit code to your phone via SMS text message.
      Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The YubiKey Recovery tab is highlighted. You need to enter the verification code that was sent to your phone and select the Submit button.
    • Enter your verification code. Enter in the 7-digit code that you received on your cell phone.
      Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The Phone Recovery tab is highlighted. You need to enter the verification code sent to you phone and select the Submit button.
    • You will see a green check mark next to your phone number once it’s successfully verified. You can select update if you wish to change it to a different number.Screen image of Account Recovery Settings. There are 3 tabs to choose from :Email Recovery, Phone Recovery, YubiKey Recovery. The Phone Recovery tab is highlighted. You will see a green check mark by your phone number.
  6. Login with MFA. The NEXT time you Login to the MyCollege portal using your BCCNET credentials, now that you have onboarded, you should receive a prompt for “Additional Security Verification”. Select a verification option to continue.
    Screen image of Email security verification screen. This is an extra layer of security to ensure that only you can access your account. Select the email id you want to use for verification. There is a small field in the bottom right to select so you can Trust this device.
  7. Enter your secure code sent to your second factor.
    Screen image of Email security verification screen. This is an extra layer of security to ensure that only you can access your account. Select the email id you want to use for verification. Enter the verification code that was sent to your email address and select the Submit button.    Notes: The OTP timer is 59 (displayed at 38 seconds above) seconds and counts down to zero.  This is only important if you need to SEND another key code.  Each code will last 15 minutes before another key code is needed.
  8. [Optional] View or change your MyMFA settings. After Onboarding you can go back into the MFA area by selecting the MyMFA under the MY APPS in the right side menu. You can update your MFA settings from “Account Recovery Settings”, view devices you’ve logged in from and untrust devices from “My Devices” and even change your password 
     MyCollege home screen MFA Reset highlighted under menu option MY APPs

The Procedure flow to change your password on the next login:  (4/23/2024 - and campus wide password change will be implemented for faculty and staff)

This procedure will happen when logging into MyCollege portal

1. Login
MyCollege login screen. Login ID field and blue LOG IN button

 

2. Your password needs to change and you'll see a message on top of the login: To Secure your account, please set new password here: resetting it now.

MyCollege Login with message to reset your password

3. Enter your Username (Note the Guidelines for your new password)  Passwords must be at least 14 characters in length and contain three of the following categories: lowercase letters, UPPERCASE LETTERS, numbers (1234), special characters (!@#$).

 

4.  Verify it is really YOU making this change by sending a code to one of your email factors.  Select one of your email addresses.

MyCollege screen image with block for Reset your password. Select the email address you want to use for the recovery process

5.  Go to your email address, grab the code, and enter it in.

 

6. Enter your new password. Hover over the "i"(information) to see the requirements again.

 

7. Enter new password

 

8. Notice the Red box if Passwords DON'T Match

Login in screen with message that passwords do not match

 

9.  You'll get a success message: We're all set! You can Login Now or wait the few seconds to get the MyCollege Login screen

MyCollege screen image with block for Reset your password. A confirmation message is shown on the screen when the password is successfully set.

10. Login with your new password!

MyCollege screen image with block to log in. Set the username and password and select the Log In button.

11.  Verify it is you with one of your MFA factors.

MyCollege screen image with block for Email security verification. Select the password to use.

12.  Enter your code.

MyCollege screen image with block for Email security verification. Enter the verification code that was sent to you email address and select the submit button.

13. It's logging you in ...

MyCollege screen image with block for Email security verification. Screen is greyed out as it processes your information. Please wait until it returns.

14.  You are in! Congratulations, you successfully changed your password using Mycollege.

Screen image of MyCollege home page will show when you have successfully logged in.

Print Article