{"id":17699,"date":"2019-11-12T12:00:45","date_gmt":"2019-11-12T18:00:45","guid":{"rendered":"https:\/\/wp.stolaf.edu\/it\/?page_id=17699"},"modified":"2023-06-07T08:24:43","modified_gmt":"2023-06-07T13:24:43","slug":"password-policy","status":"publish","type":"page","link":"https:\/\/wp.stolaf.edu\/it\/password-policy\/","title":{"rendered":"Password Policy"},"content":{"rendered":"

Title:<\/strong>\u00a0Password Policy
\nEffective Date:<\/strong> November 2019
\nIssuing Authority:<\/strong>\u00a0Information Technology
\nProgram Coordinator:<\/strong>\u00a0 Chief Information Officer, Libraries and IT
\nLast Updated:\u00a0<\/strong> April 2019<\/p>\n

Purpose of Policy<\/h3>\n

Account passwords are the first line of defense for St. Olaf College\u2019s data and information systems. The purpose of this policy is to define password requirements for the College\u2019s information system accounts to keep user and institutional data confidential and information technology systems secure.<\/p>\n

Scope<\/h3>\n

This policy applies to all account passwords used to conduct College business.<\/p>\n

Policy<\/h3>\n

Passwords should be difficult to manually guess and difficult to crack using automated methods. Password requirements should be defined in consideration of industry best practice.<\/p>\n

Standard<\/h3>\n

Passwords will meet the following requirements:<\/p>\n

    \n
  • Passwords must be a minimum of 10 characters.<\/li>\n
  • Passwords cannot be reused.<\/li>\n
  • Passwords must pass an industry-standard strength checker.<\/li>\n<\/ul>\n

    Passwords will have no expiration. Passwords will only require changing if there is a reason to believe the password has been exposed or compromised.<\/p>\n

    All users must keep their account password confidential and not share it with others. Users should never log someone else in to their account or use another person\u2019s username and password. Passwords are the user\u2019s responsibility and they will be held accountable for activities within their account and activities associated with their username and password.<\/p>\n

    Two-factor will be required for all College user accounts.<\/p>\n

    Addendum<\/h3>\n

    It is not possible to enforce these requirements in all cases (for example, cloud services with accounts that are not managed by College IT staff). In these cases, as much as possible, passwords should be a minimum of 10 characters, and the same password should not be used for multiple services.<\/p>\n

    <\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"

    Title:\u00a0Password Policy Effective Date: November 2019 Issuing Authority:\u00a0Information Technology Program Coordinator:\u00a0 Chief Information Officer, Libraries and IT Last Updated:\u00a0 April 2019 Purpose of Policy Account passwords are the first line […]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"_spp_custom_css":"","footnotes":""},"class_list":["post-17699","page","type-page","status-publish","hentry"],"acf":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/pages\/17699","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/comments?post=17699"}],"version-history":[{"count":2,"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/pages\/17699\/revisions"}],"predecessor-version":[{"id":19968,"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/pages\/17699\/revisions\/19968"}],"wp:attachment":[{"href":"https:\/\/wp.stolaf.edu\/it\/wp-json\/wp\/v2\/media?parent=17699"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}