Search Google Appliance

Information Technology

Update: New Password Rules - Mon., 6/14

June 14, 2021

Update 6/11/21:

On Monday, June 14, 2021, IT Account password rules will be updated to align with new standards for digital identities and authentication from the National Institute of Standards in Technology (NIST).

These changes apply to new IT accounts and the next time you change your IT account password. You will not be required to change your password on June 14.

  • Password length will be increased so you can choose a password between 10 and 32 characters.
  • Password complexity rules will change so you can choose a passphrase and use a combination of uppercase, lowercase, numeric, and special characters. However, specific specific combinations of these categories are not required.
  • We strongly recommend that you enable multi-factor authentication on your account. Multi-factor authentication reduces risks to your account, your personal information, and the university's information.
    • Self-enroll in multi-factor authentication at multifactor.umass.edu.
    • Multi-factor authentication protects HR Direct by default. Once enrolled, you can request multi-factor authentication to be enabled on Microsoft Office 365 applications and other select IT services.

 


 

Update 6/1/21:

The changes to IT Account password length and complexity rules which were originally scheduled for tomorrow, June 2, have been delayed. These changes (described below) are important to align the university with new standards. Stay tuned for updated information about when these changes will be applied.  

The new requirements will apply to new accounts as they are created, and when you change your passwords. You will not be forced to change your password immediately.  

 


 

Originally published 5/20/21:

This June, IT Account password rules will be updated to align with new standards for digital identities and authentication from the National Institute of Standards in Technology (NIST).

These changes apply to new IT accounts and the next time you change your IT account password. You will not be required to change your password on June 2.

  • Password length will be increased so you can choose a password between 10 and 32 characters.
  • Password complexity rules will change so you can choose a passphrase and use a combination of uppercase, lowercase, numeric, and special characters. However, specific specific combinations of these categories are not required.
  • We strongly recommend that you enable multi-factor authentication on your account. Multi-factor authentication reduces risks to your account, your personal information, and the university's information.
    • Self-enroll in multi-factor authentication at multifactor.umass.edu.
    • Multi-factor authentication protects HR Direct by default. Once enrolled, you can request multi-factor authentication to be enabled on Microsoft Office 365 applications and other select IT services.