Have you changed your password(s) recently? When you change your clocks for the start of Daylight Saving Time on Sunday, March 12, consider changing your UMICH (Level-1) password as well. ITS suggests that you change your UMICH password every six months or so. An easy way to remember this is to change your password when you change your clocks for Daylight Saving Time. Change your password at password.it.umich.edu.
If you want to take an extra step to protect your data (and the university’s), turn on two-factor authentication for Weblogin. Find out more about two-factor authentication at U-M.
Please stop advising people to change their passwords without a reason.
New NIST Guidelines are coming that will make this formal, but the consensus says this is no longer sound advise and this kind of guidance should be removed entirely.
Time to rethink mandatory password changes:
https://www.ftc.gov/news-events/blogs/techftc/2016/03/time-rethink-mandatory-password-changes
This comment has been shared with leadership for Information Assurance and for Identity and Access Management for their consideration.
Thanks for your suggestion. We are returning to some language we have used in the past, recommending that people check their passwords every six months and review good password security. Our password security checklist has been updated:
http://www.itcs.umich.edu/your-account/passwordchecklist.php
We will update our images with that language next time around.