Security Policy
Passwords
- Password history determines the number of unique new passwords a user must use before an old password can be reused. SU's password history is set to 24 passwords.
- Maximum password age determines how many days a password can be used before the user is required to change it. SU's maximum password age is set to 180 days.
- Minimum password age determines how many days a new password must be kept before the user can change it. SU's minimum password age is set to 2 days.
- Minimum password length determines the minimum number of characters a password can have. SU's minimum password length is set to 7 characters.
- Passwords must meet complexity requirements to be secure. SU's password complexity requirements are as follows:
- The password is at least seven characters long.
- The password must contain characters from at least three of the following four categories:
- English uppercase characters (A-Z)
- English lowercase characters (a-z)
- Base 10 digits (0-9)
- Non-alphanumeric (for example: !,$,#, or %)
- The password does not contain three or more characters from the user's account name.
- The password does not contain three or more characters from the user's first, middle, or last name.
- These complexity requirements are enforced upon password change or creation of new passwords.
Instructions for Changing Your Network Password are available at http://www.susqu.edu/helpdesk/guides.cfm.
Please call the Information Technology Help Desk (570-372-4502) if you have problems changing your password. Please call Sue Moyer (570-372-4241) if you have questions about this policy.
4/4/05
