Strong Password Management

IST strongly encourages changing all NJIT account passwords at least once every 4 months; for example, change your password at the beginning of the fall, spring, and summer semesters.
  • If you want to change / mangage your password or you don't know your current UCID password, click here.
  • If you have a Webmail by Google IMAP password, change it separately here.To learn how to create a strong password click here.

Strong Password Best-Practices

Your NJIT computing accounts provide access to sensitive and personal information. It is important to keep access safe and secure. Follow these guidelines to create strong passwords:

Do Don't
  • Password rules:
    • Length: Minimum 10
    • Length: Maximum 64
    • Letters: Minimum 1
    • Numbers: Minimum 1
    • First Name: Not Allowed Yes
    • Last Name: Not Allowed Yes
    • UCID: Not Allowed Yes
    • Special characters: Minimum 1
    • Valid characters ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
  • Use pass phrases to assist in password creation. For example (don't use this example):
    • Example Phrase: New Jersey was a member of the thirteen original colonies
    • Example Transformation: use first letter in each word, capitalize if monosyllablic, and add punctuation
    • Example Password:Nj)WAm;OT1!3oc
  • Change your NJIT passwords at least once every 4 months
  • Consider your password private
  • Take reasonable measures to ensure the security of your password
  • Immediately change your password if you suspect another person has access to your account or knows your password
  • Don't include personal information such as UCID, telephone number, social security number, NJIT ID, date of birth, etc.
  • Don't use "NJIT" in any combination of upper or lower case
  • Don't use the name or abbreviation of an NJIT department or course
  • Don't use proper names, titles, product names, or geographic locations
  • Don't use dictionary words in any language (use pass phrases instead)
  • Don't use words spelled backwards, common misspellings, or abbreviations
  • Don't use common letter-to-symbol conversions, such as changing "and" to "&" or "to" to "2"
  • Don't use sequences or repeated characters (e.g., 12345678, 222222, abcdefg, or strings of adjacent letters on your keyboard)
  • Don't write your password down anywhere
  • Don't share your password with others
  • Don't use the same password across multiple accounts
  • Don't reuse passwords for at least 2 years
  • Don't use the "remember password" feature

What if I don't know my current UCID password?

The Unattended Password Reset (UPR) process at will change the password of your University Computing ID (UCID) and the password of any other computer accounts associated with your UCID.

Note: If you have not used UPR before or you created your UCID prior to November 2004, UPR requires that you go through a one-time registration process. Please follow these directions to register to use UPR:

In Person:

Visit the IST Service Desk to fill out a registration form. The IST Service Desk is located in room 48 of the Student Mall. You will be asked to show photo identification. Once you fill out the form and show photo ID, the staff will issue you a Temporary Access Code that will allow you to access the Unattended Password Reset Process (UPR) for the first time, reset your password, and allow you to reset your password yourself from that time forward.

By Fax:

Fill out the form found passwordform.pdf and fax it to 973-596-2905. Once the IST Service Desk receives your fax they will call you within 25 minutes of having received it, during normal business hours, to issue you a Temporary Access Code that will allow you to access the Unattended Password Reset Process (UPR) for the first time, reset your password, and allow you to reset your password yourself from that time forward.

Last Updated: June 17, 2019