Introduction
This article will guide new students through the account activation process as well as setting up required two-factor authentication.
Contents:
Initial Login with Activation Link in Welcome Email
- Look for an email from Adminissions@whccd.edu with your activation information.
- Make a note of your username and temporary password.
- Click the link to begin the activation process.
- Enter your username (found in the welcome email) and click Next
- Enter your temporary password (found in the welcome email) and click Sign In
- You will be prompted to change your password. Enter your temporary password in the first field and then the password that you want in the last two fields and then click Sign In.
Important: That only requirement for your password is that it be at least 16 characters long.
There is no complexity requirement for your passwords, but using different types of characters (uppercase/lowercase/numbers/symbols) is encouraged as it will make your password more secure.
Enrolling in Two-Factor Authentication
After successfully changing your password, you will be prompted to register for two-Factor authentication. The default option is Microsoft Authenticator, but you can choose other methods. Click Next to begin the enrollment.
Methods Available During Initial Registration
The following table lists the methods that are available during the initial registration. Additional methods can be configured after the initial registration.
| Method | Convenience | Security | Notes |
| SMS | High | Good | SMS is susceptible to phishing if an attacker can trick you into logging into a fake login page. Though not likely, it's also possible for attackers to steal people's phone numbers. |
| Authenticator Apps and Hardware Tokens (TOTP) | Medium | Better | TOTP can be done by authenticator apps (like Microsoft Authenticator or Google Authenticator), by hardware tokens and software on your PC. They are susceptible to phishing if an attacker can trick you into logging into a fake login page. |
Recommended Two-Factor Method
For increased security, we recommend using an authenticator app instead of SMS. While SMS is still reasonably secure, in rare cases it's possible for a phone number to be hijacked or text messages intercepted by attackers.
For more detailed information on the security of various two-factor methods, see this article.
Use Microsoft Authenticator
To use the default choice of Microsoft Authenticator, click Next and follow the instructions
After scanning the QR code in the Authenticator app, click Next and follow the instructions.
Use a Third-Party Authenticator App
To use an authenticator app other than Microsoft Authenticator, click in "I want to use a different authenticator app" and follow the instructions.
After scanning the QR code in the Authenticator app, click Next and follow the instructions.
Use a Hardware Token*
* Hardware tokens must be pre-configured by WHCCD's IT staff in order to be used. They are reserved for special situations where users do not have access to other methods.
To use a hardware token, click on Set up a different way to sign-in and click Next.
On the Add a sign-in method dialogue, click on Hardware Token.
Click Next
On the next dialogue, enter the serial number from the back of the hardware token and click Next.
Enter the code from the token and click Next. You may need to press the power button on the token to get the code to appear.
If the serial number and code is correct, you will see a success dialogue.
Use SMS
To use SMS, click on "I want to set up a different method" and then click on
"Phone."
Enter your phone number and click Next
Enter the code that was texted to your phone and click Next.
You will see a confirmation that your phone was registered.
Adding Additional Methods
After registering, you can add additional methods. For more information, see this guide.
Comments
0 comments
Please sign in to leave a comment.