À¶Ý®ÊÓƵ

What is happening?ÌýPassword complexity requirements (e.g., including a digit, uppercase character, special character) are being removed in favour of longer passphrases. Password standards will be updated as follows:

• Minimum length: 15 characters
• Maximum length: 64 characters
• Other: does not contain the individual’s name or other University of À¶Ý®ÊÓƵ identifier

When is this happening?ÌýWednesday, November 27, 2024.Ìý

What is the impact?

• All users:ÌýCurrently, no action is required, and individuals are not being forced to update their passwords. However, members of the University community who must change or opt to change their WatIAM password on or after November 27, will need to satisfy the new passphrase requirements as outlined above.Ìý
• Privileged accounts:ÌýCurrent password complexity rules for privileged accounts in NEXUS (e.g., ! and ~ accounts) will remain in force with the minimum length adjusted to 15 charactersÌý

Why is this happening?ÌýTo ensure University cybersecurity standards align with best practices. References supporting this change are available for review:

• Ìý(Canadian Centre for Cyber Security)
• Ìý(Canadian Centre for Cyber Security)

Questions or concerns?ÌýPleaseÌý.