|
Password Policy |
| |
|
Password Policy
|
| |
|
This policy establishes a standard for creation of strong passwords and protection of those passwords. This policy applies to all persons who have, or are responsible for, an account on any system accessed by using the Orange Key (O-Key) password.
|
| |
|
Users are responsible for assisting in the protection of the systems they use. The integrity and secrecy of an individual's password is a key element of that responsibility. Each individual has the responsibility for creating and securing an acceptable password per this policy. Failure to conform to these restrictions may lead to the suspension of IT services or other action as provided by University Policy or Federal and/or State law.
|
| |
|
Password Creation Rules:
|
| |
- Passwords must be at least eight characters in length.
- Passwords must consist of a combination of upper case letters, lower case letters and numerals.
- Passwords cannot contain a dictionary word.
- Passwords cannot contain all or part of your userid.
- Passwords cannot match any of your four previous passwords.
|
| |
|
Password Expiration:
|
| |
|
Passwords will expire on a 120-day cycle. Advance warnings of upcoming password expiration will be sent to the designated account holder via campus e-mail beginning 30 days prior to expiration, with repeated reminders several times thereafter until the expiration date. Any account holder may change his or her password at any time through their O-Key account - it is not necessary to wait for expiration. Passwords should be changed immediately whenever there is a belief that the password has been compromised.
|
| |
|
Effective: 01/01/06
|
| |
| View other policies |
| |
|
