Skip to main content
Office of Information Technology

BYU–HAWAII PASSWORD STANDARDS IT EMPLOYEES

All user passwords must adhere to the following parameters:

data-content-type=""
Login window with username and hidden password fields.

1

Be at least 10
characters long
overrideBackgroundColorOrImage= overrideTextColor= promoTextAlignment= overrideCardHideSection=false overrideCardHideByline=false overrideCardHideDescription=false overridebuttonBgColor= overrideButtonText= promoTextAlignment=
data-content-type=""

2

Include at least three of the following:
uppercase
lowercase
numerals
symbols
overrideBackgroundColorOrImage= overrideTextColor= promoTextAlignment= overrideCardHideSection=false overrideCardHideByline=false overrideCardHideDescription=false overridebuttonBgColor= overrideButtonText= promoTextAlignment=
data-content-type=""
Reset password form with fields for new and confirm password

3

Be different than your current password, 5 previous passwords, BYUH NetID, or NetID password reset answer
overrideBackgroundColorOrImage= overrideTextColor= promoTextAlignment= overrideCardHideSection=false overrideCardHideByline=false overrideCardHideDescription=false overridebuttonBgColor= overrideButtonText= promoTextAlignment=
data-content-type=""
Passwords written on sticky notes and notebook near keyboard

4

Be different than passwords used elsewhere
overrideBackgroundColorOrImage= overrideTextColor= promoTextAlignment= overrideCardHideSection=false overrideCardHideByline=false overrideCardHideDescription=false overridebuttonBgColor= overrideButtonText= promoTextAlignment=
overrideBackgroundColorOrImage= overrideTextColor= promoTextAlignment= overrideCardHideSection=false overrideCardHideByline=false overrideCardHideDescription=false overridebuttonBgColor= overrideButtonText=

NOTE: PASSWORDS WILL EXPIRE AFTER ONE YEAR

PROTECT ALL PASSWORDS

Instruct users in the following practices:

  • Passwords should not be shared with anyone else, this includes coworkers, teaching assistants, students, or family.
  • No one should accept any MFA authentication prompts they didn't initiate.
  • Passwords will expire after one year and will need to be changed.
  • Report suspicious activity to the OIT Helpdesk at 808-675-3211 or oitsecurity@byuh.edu.

Direct users to watch the Cars, Ducks and Passwords video and learn more about passwords at CES Security Passwords.

Phone screen showing Okta Verify app with keyboard in background

Multifactor Authentication


The approved tool for multifactor authentication is Okta.
All systems that perform authentication (except for laptops and desktops) need multifactor authentication.

MFA should be applied for:
  • Website login
  • All administrative access
  • Any remote login
  • Access to backup systems & data
  • In front of all critical SaaS solutions
Update User Password Here

    Related Resources