Strong Password Management | Information Services and Technology

IST strongly encourages changing all NJIT account passwords at least once every 4 months; for example, change your password at the beginning of the fall, spring, and summer semesters.

If you want to change/manage your password or you don't know your current UCID password, click here.

Strong Password Best-Practices

Your NJIT computing accounts provide access to sensitive and personal information. It is important to keep access safe and secure. Follow these guidelines to create strong passwords:

Do	Don't
Password rules: Length: Minimum 10 Length: Maximum 64 Letters: Minimum 1 Numbers: Minimum 1 First Name: Not Allowed Yes Last Name: Not Allowed Yes UCID: Not Allowed Yes Special characters: Minimum 1 Valid characters ~!@#$%^&_-+=`\|\(){}[]:;"'<>,.?/ Use pass phrases* to assist in password creation. For example (don't use this example): Example Phrase: New Jersey was a member of the thirteen original colonies Example Transformation: use first letter in each word, capitalize if monosyllablic, and add punctuation Example Password:Nj)WAm;OT1!3oc Change your NJIT passwords at least once every 4 months Consider your password private Take reasonable measures to ensure the security of your password Immediately change your password if you suspect another person has access to your account or knows your password	Don't include personal information such as UCID, telephone number, social security number, NJIT ID, date of birth, etc. Don't use "NJIT" in any combination of upper or lower case Don't use the name or abbreviation of an NJIT department or course Don't use proper names, titles, product names, or geographic locations Don't use dictionary words in any language (use pass phrases instead) Don't use words spelled backwards, common misspellings, or abbreviations Don't use common letter-to-symbol conversions, such as changing "and" to "&" or "to" to "2" Don't use sequences or repeated characters (e.g., 12345678, 222222, abcdefg, or strings of adjacent letters on your keyboard) Don't write your password down anywhere Don't share your password with others Don't use the same password across multiple accounts Don't reuse passwords for at least 2 years Don't use the "remember password" feature

Don't

Password rules:
- Length: Minimum 10
- Length: Maximum 64
- Letters: Minimum 1
- Numbers: Minimum 1
- First Name: Not Allowed Yes
- Last Name: Not Allowed Yes
- UCID: Not Allowed Yes
- Special characters: Minimum 1
- Valid characters ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
Use pass phrases to assist in password creation. For example (don't use this example):
- Example Phrase: New Jersey was a member of the thirteen original colonies
- Example Transformation: use first letter in each word, capitalize if monosyllablic, and add punctuation
- Example Password:Nj)WAm;OT1!3oc
Change your NJIT passwords at least once every 4 months
Consider your password private
Take reasonable measures to ensure the security of your password
Immediately change your password if you suspect another person has access to your account or knows your password

Don't include personal information such as UCID, telephone number, social security number, NJIT ID, date of birth, etc.
Don't use "NJIT" in any combination of upper or lower case
Don't use the name or abbreviation of an NJIT department or course
Don't use proper names, titles, product names, or geographic locations
Don't use dictionary words in any language (use pass phrases instead)
Don't use words spelled backwards, common misspellings, or abbreviations
Don't use common letter-to-symbol conversions, such as changing "and" to "&" or "to" to "2"
Don't use sequences or repeated characters (e.g., 12345678, 222222, abcdefg, or strings of adjacent letters on your keyboard)
Don't write your password down anywhere
Don't share your password with others
Don't use the same password across multiple accounts
Don't reuse passwords for at least 2 years
Don't use the "remember password" feature

What if I don't know my current UCID password?

Visit MyUCID Management.