OpenCCC Release 3.8.0 Summary Notes
Schedule
OpenCCC Release 3.8.0 deployed:
To pilot environment: May 15, 2026
To production: June 5, 2026
Release Summary
Multi-Factor Authentication (MFA)
This release introduces Multi-Factor Authentication (MFA) as an additional tool for securing student accounts. MFA is an industry-standard solution that uses the student’s email address (or mobile phone number) and password as an additional means of ensuring that a student’s account is not being accessed by anyone other than the student.
Following the production release, each time a student signs in or attempts to recover their CCCApply account using their email address and password, they will be prompted to enter a one-time security code (MFA). The student can choose to receive the security code to their email or their mobile phone number, as long as the credential has been saved and verified in their account.
After MFA is implemented, all future logins will require the student to enter the security code sent to their preferred method of contact: email or mobile phone number. Read more about Multi-Factor Authentication (MFA) in OpenCCC and CCCApply.
Two Week Pilot Preview
Since the introduction of MFA will affect students directly, the implementation of multi-factor authentication (MFA) for user login will be deployed to the Pilot environment for two weeks prior to going live in production. Colleges are encouraged to test the process during this pilot preview period. For testing details, see Pilot Testing: Multi Factor Authentication Process.
Account Security Enhancements
During account creation, new students are now prompted to also provide and verify a valid mobile phone number as an optional, secondary contact method.
If a student’s mobile phone or email information is changed in their account, they will now receive an email notification alerting them that a change was made. If the student did not make the change, they are prompted to take steps to protect their account.
If a student’s account becomes disabled due to lack of activity over time or an invalid email address or mobile phone number, the student will not be permitted to create a new account using the same first name, last name, and birthdate to prevent adding duplicate accounts to the system. Instead, the student will be provided instructions for reactivating their original account.
Our Commitment to Prioritizing Fraud Prevention Efforts
The CCCTC is committed to identifying and mitigating application and financial aid fraud across all Student Success Suite systemwide technology applications, including OpenCCC, MyPath, and CCCApply. For security reasons, all fraud prevention activities and development are never shared publicly outside of the CCCTC Private Fraud/Spam Support Group.
Authorized CCC staff may request access to the private fraud/spam support group by sending an email request to CCCTC Staff Support at staffsupportccctc@openccc.zendesk.com.
Pilot Testing: Multi-Factor Authentication Process
The Pilot environment is a sandbox environment for colleges to preview upcoming releases and test custom configurations.
Colleges are encouraged to preview the new MFA security enhancement using your own CCCApply Pilot application, or using the CCCApply Pilot Test College. Either way, we appreciate your time and value your feedback.
Note: To use to your own college-branded pilot application, replace the last three digits of the Pilot Test College URL link above (MIS ZZ1) with your unique college MIS code. Remember to update both the link text and the URL.
Quick Steps to Get Started
Using the CCCApply Pilot Test College, sign in with your existing OpenCCC pilot account (using a valid email address and password) or create a new account.
A one-time use security code will be sent to your email inbox or mobile phone, whichever method you selected to receive your code.
Enter the code on the Security Code page, and click Next.
On the CCC Students are Encouraged to Verify Their Identities page, click on the Verify Later link near the bottom of the screen (below the two-options graphic). Follow the next prompt to Decline Verification at this time.
Following authentication, you will be automatically directed to your CCCApply My Applications page.
Please send any comments or suggestions to your College Experience Manager (CEM), and please report an issues encountered during pilot testing to the CCCTC Staff Support team: staffsupportccctc@openccc.zendesk.com..
Want to test more use cases? Use the Testing Multi-Factor Authentication in OpenCCC - Pilot UAT Guide to test seven different use cases/user flows that now include MFA as part of their process.
Use must use a valid email address or mobile phone number to test the MFA feature in order to receive your security code. The rest of your account information can be fake.
Data Access and Delivery
No data access or data delivery changes were made as a result of this release. No action is required by colleges with this release. The information below provides general information about CCCApply data access and delivery.
Superglue for Apply
As new features and functionality are developed for CCCApply and other systemwide technology applications, it may be necessary for colleges to upgrade their existing Superglue College Adaptor schema to the latest version. For information about the Superglue College Adaptor and your current schema version, please contact your College Experience Manager at Enabling Services for assistance.
Data Warehouse Access
All CCCApply and Student Success Suite data fields are ultimately stored in the CCC Data Warehouse which can be accessed directly via the Data Warehouse Direct Access Connection service and/or, for authorized admins and staff, through the Data Warehouse Report Server.
Need Help? Colleges can reach CCCTC Staff Support at staffsupportccctc@openccc.zendesk.com for assistance.
Documentation
The latest OpenCCC and CCCApply Data Dictionaries and User Guides are posted in the CCCApply Public Documentation space.
College and Staff Resources
Multi-Factor Authentication (MFA) in OpenCCC and CCCApply - A Step-by-Step Guide for Understanding MFA in OpenCCC and CCCApply
Testing Multi-Factor Authentication (MFA) in OpenCCC - Pilot UAT Guide - Use Cases and User Flows for College Pilot Testing
ID Verification with the OpenCCC Account System (DMV Wallet, ID.me, manual verification)
Data Dictionaries
No data element changes were made in this release. The latest OpenCCC and CCCApply Data Dictionaries and User Guides are posted in the CCCApply Public Documentation space.Documentation Sites