Web U-M ITSS only
page-bannerNone
ITSS Home ITSS Information for Students ITSS Information for faculty and staff ITSS Information for IT Professionals
Events
Training
Services
Tools & Tips
Resources
Report an IT Security Incident
About ITSS
Contact Us

ITSS Home Frequently Asked Questions

Frequently Asked Questions

What’s a UMICH Kerberos password?
This is the password you use to view your personal information on Wolverine Access, C-Tools, personal e-mail and more. It also authenticates you into the U-M networks for wireless access and virtual-private networking (VPN) from remote locations.

How do I change my UMICH Kerberos password?
To change your password, please visit:
https://accounts.itcs.umich.edu/kpasswd-bin/kpasswd.cgi

Will I be required to enter a strong password?
There is some criteria in place, but users should still follow these guidelines:

  • A recommended password length is 9 to 15 characters.
  • UMICH passwords should contain upper case, lower case, digits and punctuation.
  • A passphrase like "Rud0lph!sMyF^voriteR3ind33r" is also acceptable.
  • Do not use dictionary spellings or personal information.
For more information on choosing and setting a secure password visit: http://www.itcs.umich.edu/itcsdocs/r1162/ or http://www.microsoft.com/protect/yourself/password/create.mspx

Is there a recommended place to check the strength of my password?
If you follow the guidelines above, your password will be strong. If you’d still like to test it, you can use Microsoft’s Password Checker, a non-recording feature on their Web site: http://www.microsoft.com/protect/yourself/password/checker.mspx

I changed my password and now I have trouble logging in!
First check to make sure you typed your new password correctly.  For example, make sure the caps lock is off on your keyboard.  If this is not the problem, try your old password.  If your old password still works, then either you never changed your password or you are using a system that has a separate password that you should also consider changing.  If you still have questions or are unsure what to do, please contact either your local department IT support staff, your local college IT help desk, or the ITCS Help desk (734-764-HELP).

Why was this password test performed?
Because UMICH Kerberos passwords are the primary mechanism for protecting against unauthorized access to University resources, a weak password compromises the security of sensitive information at the University.

How was this test performed?
This audit was performed on an offline database to identify the weakest passwords, which often contain dictionary words.

Was my password sent to anyone in my department?
No. ITSS does not make that information available to anyone. Only the name and uniqname of the users who have weak passwords were provided to the school or college’s Security Unit Liaison for notification purposes.

How often will ITSS scan for weak passwords?
This effort will be performed twice a year as part of other regularly scheduled IT vulnerability scans.

I have way too many passwords to remember easily. What do you recommend?
Password Safe is a free tool that securely records all your passwords. To learn more, please refer to the ITSS Security Short entitled "How to Manage All Your Passwords" at http://www.safecomputing.umich.edu/tools/security_shorts.html

I still have questions! Whom can I call for help?
Please contact either your local department IT support staff, your local college IT help desk, or the ITCS Help desk (734-764-HELP).
Last modified June 02, 2008