To: SUNYIT students, faculty and staff

From: Andrew Bellinger, Interim Director of Information Technology Services

Re: New Password Policy

Date:   7/2/2013

To enhance information security and protect your email and vital information from unauthorized access, SUNYIT has instituted a new password policy, available online at:  sunyit.edu/its/policies/password. 

To implement the policy for the convenience of users, existing passwords will remain effective until   September 15, 2013 . During this period, new users and existing users who change their password will be prompted to create one that meets the new policy’s standards: 

* Contains at least eight characters, using at least two of these character groups: English uppercase letters A through Z, English lowercase letters a through z, characters such as !, $, #, %

* Contains at least one number (0-9)

* Does not contain the user’s name or account name

* Different from passwords used in two previous password cycles 

All users will be required to change their SUNYIT password by   September 15, 2013 , and at least once a year thereafter. 

The reason for the new policy is simple: It takes a hacker only a matter of minutes to crack a 6-letter password. Increasing the number of characters in SUNYIT passwords, making them more complex and changing them at least annually will help secure email and important institutional information. 

If you have any questions please contact the HelpDesk at 792-7440 (x7440) or submit a ticket via our ticketing system  helpdesk.sunypoly.edu

Thanks for your cooperation!