Password Guidelines
Posted by , Last modified by Melinda Barnsley on 18 October 2019 02:13 PM

Passwords are an important aspect of computer security. They are the front line of protection for your user accounts. A poorly chosen password may result in the compromise of Plymouth State University’s system resources. As such, all members of the Plymouth State University community (including contractors and vendors with access to Plymouth State University systems) are responsible for taking the appropriate steps to select and secure their passwords. All passwords should be treated as sensitive, confidential Plymouth State University information. If an account or password is suspected to have been compromised, change your password right away and report the incident to ITS Help Desk at (603)535-2929 or email at helpdesk@plymouth.edu immediately. See Plymouth State University's User Credentials Policy for further information.


 

The Current Password is the password that was just typed in (it may be the default password). The New Password must be between 14-64 characters with no complexity (for example, it can be all lowercase) and no requirements for special characters.

Forget your Password?

See How to Self-Reset your Password

Employee Password Change

Pursuant to Plymouth State University's User Credentials Policy, employees must change their myPlymouth password every 365 days. Be aware that the 365 day change is not effective until October 28, 2019. At present, it is still 180 days until you change your password after October 28th. It will be 365 days for those who change their passwords after October 28th. After having the same password for 365 days, upon logging in to myPlymouth, you will be reminded that you must change your password soon. For example:


 

Creating Strong Passwords

Everyone should be aware of how to select strong passwords. Strong passwords have the following characteristics:

  • Passwords shall be between 14 and 64 characters in length.    No complexity requirements (for example, it can be all lowercase) and no requirements for special characters
  • Passwords shall not include the user’s first, last, or preferred name or the user’s USNH or PSU username
  • Passwords shall not contain the user’s USNH or PSU ID
  • Passwords cannot be re-used
  • New password shall be sufficiently different from previous passwords
  • Passwords shall contain a minimum of 5 unique characters
  • Passwords shall not contain number or character sequences of 4 or more.  Examples:   abcd, 6789, sTuV
  • Passwords shall not contain characters repeated 4 or more times.  Examples:  bbbb, 8888, TttT, &&&&
  • Known compromised or commonly used weak passwords are disallowed

See the US-CERT's Choosing and Protecting Passwords website for additional password advice.*

Finally, please practice the following strategies to keep your password secure:

  • Never reveal a password to ANYONE over the phone or in an email message
  • Never share a password with anyone, including family members, colleagues, administrative assistants or supervisors, even if going on vacation.
  • Do not use the same password for Plymouth State University accounts as for other non-Plymouth State University access (e.g., home email account, option trading, benefits, etc.)
  • Do not use the “Remember Password” feature of many applications (e.g., Office 365, OutLook, Firefox, etc.)
  • Never write passwords down and store them where they could be easily found in your office.
  • Never store passwords in a file on ANY computer system (including cell phones or similar devices) without encryption


* This link is provided for informational purposes only and does not represent an endorsement by or affiliation with the US-CERT (DHS).

(0 vote(s))
Helpful
Not helpful