IU computer accounts/users will need to update passphrases.
Please change your password if it is TWO years old. This will effect personal devices (cell phones & tablets) where your email is viewed.
UITS will soon leverage the CAS interrupt function to resume prompting users to update expired passphrases. They are planning to take a phased approach, with the first phase starting next week and affecting passphrases more than three years old. They will continue to step down in phases until all accounts are back to the standard two- year expiration cycle. The number and timing of the next phases are not yet known; UITS will schedule them based on responses to this first phase. We’ll keep you informed as they are scheduled.
Beginning on March 29, CAS will only display a reminder message to impacted users. Then, starting on April 26, users in the first phase will not be able to authenticate through CAS until they set a new passphrase.
On March 29, CAS will begin notifying users with stale passphrases using the interrupt message below. Users will have the option to change their passphrase or to click through the warning and continue with their CAS authentication (continue on is the default selection).
It’s been a while since your passphrase was updated (DATE). It is important to change your passphrase regularly. Please change your passphrase before April 26, 2016 to ensure seamless access to your IU account.
[] Change my passphrase
[] Not now, continue with login (default selection)
[Continue]
On Tuesday, April 26, the CAS interrupt message for users with stale passphrases will change to the message below. Users will not be able to finish CAS authentications until they change or reset their passphrase (clicking the “Change my passphrase” button launches the Self-Service Passphrase Reset tool – https://access.iu.edu/Passphrase).
Your passphrase has expired, and you’re now required to change it.
[Change my passphrase]
For questions or concerns please contact chemitg@indiana.edu.
UITS will adopt new requirements for passphrases to be easier for users to understand and meet.
Effective on Tuesday, March 29, UITS will adopt new requirements for passphrases. Existing passphrases will continue to work, even if they do not meet the new passphrase requirements.
The new requirements can be simplified with this short explanation:
Passphrases should be a sentence with punctuation and at least one capital letter. They need to be at least 15 characters long and cannot include your name or Network ID. You will be asked to change your passphrase at least every two years.
The technical details of the new requirements closely follow passphrase complexity features native to ADS. Specifically, all of the following apply:
- Length between 15 and 127 characters
- Contain at least 1 upper-case letter, 1 lowercase-letter, and 1 non-letter (all three character types must be included)
- Some details about the non-letter requirement:
- Any of the following characters will meet the non-letter requirement: 0123456789~!@#$%^*_-+=`|\/(){}[]:;”‘<>,.?
- Spaces will be accepted, but they will not meet the non-letter requirement (they do count toward the total character count)
- Some details about the non-letter requirement:
- May not contain your name (i.e. display name) or network ID (i.e. username)
- Minor exception: any part of a display name that is less than 3 characters may be included in the passphrase. For example, a user with the display name “Joe A User Jr” could successfully include the letter “A”, or the string “Jr” in his passphrase but not the strings “Joe” or “Use”
- Change every two years
- Note: this requirement will be enforced by the Central Authentication Service (CAS), but not by ADS