BYU–HAWAII PASSWORD STANDARDS IT EMPLOYEES
Password Security Requirements
1
Ensure that password is at least 10 characters long
2
Include at least three of the following:
uppercase, lowercase, numerals, symbols
uppercase, lowercase, numerals, symbols
3
Be different than your current password, 5 previous passwords, BYUH NetID, or NetID password reset answer
4
Be different than passwords used elsewhere
NOTE: PASSWORDS WILL EXPIRE AFTER ONE YEAR
Protect All Passwords
Instruct users in the following practices:
- Passwords should not be shared with anyone else, this includes coworkers, teaching assistants, students, or family.
- No one should accept any MFA authentication prompts they didn't initiate.
- Passwords will expire after one year and will need to be changed.
- Report suspicious activity to the OIT Helpdesk at 808-675-3211 or oitsecurity@byuh.edu.
Direct users to watch the Cars, Ducks and Passwords video and learn more about passwords at CES Security Passwords.
Multifactor Authentication
The approved tool for multifactor authentication is Okta.
All systems that perform authentication (except for laptops and desktops) need multifactor authentication.
MFA should be applied for:
- Website login
- All administrative access
- Any remote login
- Access to backup systems & data
- In front of all critical SaaS solutions