Protect your passwords
Your account is your identity, and your password is the key that gives you access to email, shared folders and other University systems and applications.
Keeping your account and password secure is important, because if someone else has access to this information, they will also have access to everything that you do. They could steal or alter sensitive data, impersonate you, commit cyber-crime under your name, as well as use your account to spread spam and viruses to other victims.
It is important to remember that when it comes to your personal and University passwords that you should never reveal your password to anyone, including your co-workers and supervisors. University IT will never ask you for your password or for you to validate your password via email links. Neither should any other reputable service providers.
Good password practices
Below are some good practices that all users should follow when dealing with and handling passwords:
- Don't use the same password or passphrase for all your accounts.
- Never share your personal passwords with anyone.
- Never send passwords via email or the University Service Desk.
- Never use or enter your password on non-secure networks or websites.
- Change your passwords on a regular basis.
- Don't store your passwords within web applications or web browsers.
- Never use information in a password or passphrase which can be found online.
- If you need to store written copies of your passwords, store them safely and not on your computer.
All University staff and students should refer to the password guidelines provided by University IT.
University password polices
All University staff and students, including those who administer or manage any University systems or applications on the University network need to ensure they follow and adhere to the University IT Standard on Authentication and Passwords.
For more information relating to University IT security policies and standards refer to Cyber Security Policies and Guidelines.