Campus Computing Accounts KnowledgeBase Network Printing Policies & Forms Security Software Telephone Tutorials Sign In:    Intranet    myCMU    Eagle Mail Computing Staff Online Request

passwords

Each Central Methodist University computer user is responsible for his or her use of technology on campus. The integrity and secrecy of an individual's password is a key element of that responsibility.

This policy describes the University's requirements for acceptable password selection and maintenance. Its purpose is to reduce overall risk to the institution by helping computer users reasonably avoid security and privacy risks that result from weak password choices and to encourage attention to password secrecy.

This policy applies to passwords used by systems that participate in the Central Methodist University windows-based network (i.e. Eagle Account).

Computer users at Central Methodist University shall select passwords according to the following:

• Password minimum length: A password must be no fewer than eight characters.
  Though technology constraints may impose maximum length or other restrictions, use of "pass phrases" (memorable short sentences instead of single words) shall be supported where possible and practical. 
  
  EXAMPLES                                                             PASSWORD
  
  My dog is the #1 breed in America                             Mdit#biA
  
  The percentage of pollen is less during the Winter       T%opildtW
  
  Two people may earn more money than one person     Tpmem$t1p
   
• Composition: Passwords must be composed so that they: include at least one character from at least three of the following classes: lowercase letters, uppercase letters, numerals, punctuation (for example, #, |, $, and %).  These
  are not found in common dictionaries, and are not well-known or predictable phrases (for example, "GoEagles" is a poor choice for a password)
   
• Password aging: A Central Methodist University computer user must change his or her password at least every 180 days. Attempts to login using an expired password will not succeed. After changing a password, a computer user must wait at least 1 day before changing his or her password again.
   
• Reuse of old passwords: Reuse of any of the account's five prior passwords will not be permitted.

Consequences for noncompliance:

• Attempts to create or change a password to one that does not meet the above parameters will result in rejection of the change to the password.
   
• Accounts with expired passwords will be denied logon by participating systems.

 

 

Support CMU  |  Event Calendar  |  Employment  |  myCMU  |  Eagle Mail  
Web feedback - Credits - © 2008 CENTRAL METHODIST UNIVERSITY -  All Rights Reserved
411 Central Methodist Square - Fayette, Missouri - 65248 - 877-CMU-1854