A security enhancement updates how "Requesters" in multiple SchoolDude solutions will be able to access the MySchoolBuilding portal.
View a 3 minute Introductory Video to the Security Enhancements
Let's address the core questions you may have:
What is happening?
In order provide more user control and security, Requesters will now utilize individual passwords along with the global Submittal Password to access the MySchoolBuilding portal and submit maintenance, IT, inventory, event and/or trip requests.
Why is this happening?
The MySchoolBuilding page was originally designed for quick implementation and ease-of-access. Requesters could self-register upon their first submission if they had a direct link (or were provided the account number) and if they were provided the Submittal Password allowing them to complete the request and be recorded in the user database for future usage.
Submittal Passwords have traditionally been simple (i.e. “password”, a mascot, a district name).
While this methodology kept implementation easy, this could create questions or uneasiness with administrators concerned with:
- controlling exactly who can submit requests
- who the common password was being shared with
- could a person log in and submit requests as another requester if they knew that person's email address and the submittal password
- could a requester log in and see another requester's submissions if they knew that person's email address and the submittal password
Unfounded or not, these concerns are being addressed.
How will this affect us?
This will only affect users assigned to the role of Requesters, no one else. This enhancement adds a layer of authentication to access the MySchoolBuilding.com page. Nothing else changes.
If you have a link on your website for the MySchoolBuilding portal, preferably one that includes the account number in the web address, nothing will change.
For users that can control what happens to requests submitted via MySchoolBuilding.com, nothing changes.
If you use ConnectAuthenticate for user authentication, nothing will change.
If you have tips or help documentation on your website, you will want to update it to include new information concerning the requirement of establishing an individual password along with the global Submittal Password.
If users have invalid email addresses, they may be unable to retrieve a password update. There are password overwrite capabilities your Administrator personnel in the appropriate SchoolDude solutions will be able to use.
What are tips we can use?
If you have a communication network your staff visits or views on a routine basis (e.g., employee news page, staff website), place notes there. Also consider email notifications, memos, staff meetings and other communication chains to reach as many people as possible to let them know of the update. Use our user guides, templates and videos to save work on your part in developing the communications.
Will the Submittal Password still be on the page?
Yes. This security layer is currently still enabled as a final safeguard that the user is someone you wish to be able to submit requests.
How will you help us if we need it?
SchoolDude has been updating user guides and videos, along with an administrator's guide for use in updating your previous documentation.
As always, you may contact Support at Dude Solutions for questions and scenarios.
How Do I Reset a User's Password or How Does Someone Reset Their Password?
How Do I Reset My Password for MySchoolBuilding?
Why is there a Submittal Password on the MySchoolBuilding Portal Page?