NetID password FAQs
Click on a question below to see the answer. You can change your NetID password here.
1. I am locked out of my account. How do I reset my password and start using my account again?
- Answer:
-
- Print out the PIN reset form.
- Copy your University ID with the form and fax it to Client Accounts along with a contact phone number.
- Once the PIN request is received by Client Accounts, you will wait in queue for Client Accounts to call with a new PIN over the telephone.
- After you have your new PIN, go to the Activate your NetID password page and change your password to something unique but easy to remember.
|
2. What applications/systems are affected by changing my NetID password?
- Answer:
- Visit the passwords page for a comprehensive list of applications and systems that use NetID authentication.
|
3. When should I change my NetID password?
- Answer:
- Depending on several factors, it may take up to 20 minutes for your new password to propagate through all the systems. If you use a Windows computer connected to the Yale domain, you may want to change your password right before heading out for a meeting, going to lunch or leaving the office for the day.
|
4. How can I ensure that my Yale NetID and password will stay active?
- Answer:
- If you change your password annually, your NetID and password will remain active. Please select a good strong password and always choose a new one; please do not reuse old passwords no matter how long ago they were used.
|
5. Why is Yale adopting a regular password change requirement?
- Answer:
- Activities at Yale increasingly involve electronic systems, including online courses, grades, financial aid, many Yale business systems, faculty and staff benefits, IRS reporting, and more. As custodians for IT security at Yale, ITS strives to pursue every prudent step to maintain the security and integrity of your own and Yale’s electronic systems.
One critical layer of IT security is your personal password. This is not only a key to the security of your own account but to the security of the Yale community because most system-wide attacks begin with the compromise of an individual account. Like running virus protection, periodic password changes are basic security hygiene.
It can be disruptive to change passwords on a forced schedule, so, in the past, Yale has recommended a regular change and relied on individuals to do so voluntarily. A recent review of security risks highlighted the importance of password protection, and a review of password change statistics showed that few users were changing their passwords regularly. While our Yale passwords are protected in multiple layers, strong and regularly changed passwords are a critical component of our security.
Specific benefits from an annual required password change:
- Providing a regular reminder to individuals to manage their own identity and security: managing their password. While Yale’s policies preclude sharing of passwords, there is evidence some individuals do so; a password change requirement provides a routine opportunity to reinforce that passwords are private --not for sharing.
- Improving the “strength of passwords” to make them harder to guess or otherwise compromise. ITS will continue to make changes that ensure that users select “strong” passwords, further reducing the risk of password compromise.
- Providing a periodic “reset” against existing or potential password compromises such as having shared a password in the past.
- Providing an annual audit allowing ITS to disable inactive NetIDs which otherwise could expose the Yale community to account compromise.
- ITS recognizes that it requires effort to choose and learn a new, stronger (and harder to remember) password. Some may be tempted to diminish the security of their new password by writing it down instead of memorizing it – please don’t do that!
When considering an issue like this Yale must weigh the inconvenience against the benefits. Yale’s overriding concern is with the security of personal information and University systems. IT security risks continue to increase so the value of this policy will rise correspondingly over time.
|
6. Why is Yale asking me to change my password?
- Answer:
- Compromised accounts are more likely to go undiscovered over the summer months, so we are requiring this change as soon as practical in such a way as to provide minimum inconvenience in connection with academic requirements for the spring semester.
|
7. How do I create a strong password?
- Answer:
- Passwords that consist only of letters, that are made from dictionary words or that are linked to your name, common names, date of birth, or other easily obtained information are easier for hackers to crack using commonly available hacking programs. Passwords that contain a combination of numbers, symbols, and upper and lower case letters are much harder to crack. Yale will require new passwords to be between 8 and 14 characters with at least two alphabetic characters and two numbers. See the guide to strong passwords.
|
8. What else can I do to keep my account secure?
- Answer:
- A major cause of compromise is sharing your password. Please never share your NetID password with others.
Upon changing a password, there is a temptation to write down the new password – please memorize your new password as quickly as possible and don’t leave any written copy especially not by your computer!
|
9. What happens if I don't change my password?
- Answer:
- Your accounts still exist, but you will not be able to retrieve email, log into any University Windows computer on the domain, or use any other University resources that require NetID authentication until you have reset your password by getting a new PIN. If you do not change your password annually, your account will be locked.
|
10. Will I need to manually change my password in programs that have the ability to store my NetID password?
- Answer:
- Yes. A number of programs can save your password so that you don't have to enter it each time you run the application. Keep in mind that applications where you have used this option will be remembering your old password, therefore, each of these applications will need to be updated. For example, in Eudora for Windows, if you have used the "Remember password for this personality" option, you'll need to click the "Forget Password(s)" command under the "Special" menu to clear the old password. The password clearing process will vary from application to application. Visit the trouble after changing a NetID password page for help, or you can contact your IT support provider or the ITS Help Desk.
|
