To set passwords for users in your organization using OneRoster, we recommend that you do the following:
● Use single sign on (SSO) for your organization.
● Request your SIS/OR provider to populate the password field with a secure password for each user.
For single sign on (SSO) users:
– Leave the password field blank (NULL).
– Before proceeding, see the list of SSO considerations. (Click link to learn more.)
For district-controlled passwords:
– Set this field to a value of your choice.
– Provide classroom teachers with their credentials and the credentials of their students.
– Provide instructions for classroom teachers to follow if they forget or misplace the login credentials.
– Warn users that even if they change a password in the UI, the password may be changed back on next import.
Note: Passwords reset back if that user account has any changes. Example (Click to view.)
For districts allowing users to control their own passwords:
● Leave the password field blank (NULL). For the first upload, this creates a random password; for subsequent uploads, this retains the existing password.
● Provide your teachers with the following instructions:
– Manage Teacher Passwords:
If the password was set to null, it is not accessible. Upon first login, teachers must click Reset Password. Teachers receive an email with reset instructions, allowing them to change their passwords. Be sure to allow emails from *.hmhco.com.
– Manage Student Passwords:
For TC and HMO, teachers can do either of the following:
○ Change the students’ passwords themselves and provide the passwords to the students.
○ Set temporary passwords for students and provide students with the temp passwords. After successful login with temp passwords, students are prompted to create their own passwords.