(D105) Credential Security
Policy
Passwords are the frontline of protection for user accounts. A poorly chosen password may compromise SUNY Polytechnic Institute’s entire network. As such, all persons accessing University information technology resources must take appropriate steps to select and safeguard their passwords. Users must select "secure" passwords that are not easy to guess by persons who know the system or the user, and that are not "cracked" easily by automated password cracking tools.
Users may not post or share passwords or other personal credentials that they may have for any account. Users must always use secure passwords that are changed periodically.
Users may not use someone else's access information or credentials, such as user ID/password.
Policy last reviewed August 2024