Passwords

Revision as of 16:34, 2 March 2011 by Edpjm (talk | contribs) (Forgotten password?: Added ~we need to know who you are; we do not send passwords)
Information.gif Please give us a
Feedback


ENG-yours-alone small.jpg

Download folder (pdf)

Your password protects your personal information and identity against misuse. Therefore it should never be given to others. The IT department will never ask for your password. We have the necessary tools to enable us to do most of the tasks that we need to do without your password.


Create a strong password

A good password should be easy to remember but hard to guess. Attackers are a devious bunch and will stop at nothing to get into our systems. Therefore we have to look into what makes a good password.

The most important aspects of a password is its length and complexity:

  • The password must be at least 10 characters long. The maximum length is 128.
  • At least 5 different characters must be included.
  • It must contain characters from at least three of these groups;
    • small letters
    • capital letters
    • digits
    • special characters like space and the following:

! # $ % & / ( ) = ? + * - _ , . < > { } [ ]

  • However, the following special characters can not be used in the password:

' "  :  ; | \

  • Some special Norwegian or other language specific letters can not be used in the password, e.g.:

æ , ø, å, Æ, Ø, Å , ä, ó


Please note:

  • Your user id can not be a part of the password.
  • Your user id spelled backwards can not be a part of the password.
  • Your name can not be a part of the password.
  • Your name spelled backwards can not be a part of the password.
  • A word from a dictionary or wordlist is not allowed.
  • You can not use your current password.

A password maximum lifespan is 13 months.


Checklist for a well designed password

  • Construct a password that is easy to remember
  • Mix uppercase and lowercase characters (“SnoWBoArD”)
  • Use numbers or special characters in the password (“$now37Board”)
  • Don’t use well-known words, names of persons, cities, objects, user accounts etc.

Note: The passwords above, or passwords similar to those should not be used in real life.


Changing your password

If you need to change your password:

  • Start a web browser and go to: https://sebra.uib.no
  • On the top left, click “English” to get English version of SEBRA.
  • On the left side menu, locate “My account’ and select your category
  • Log on with your username and password
  • On the left hand side menu, select “Password”
  • Write the new password in the boxes “Password” and “Confirm password”, and press “Confirm”
  • Leave the next page untouched and press “Confirm”.
  • In general your password should now be available within half an hour.

If you forget your password, you will need to go to the IT department. Remember to bring identification.


Password security

  • Never give your password to anyone. Your password is yours alone and protects your personal information and identity against misuse.
  • Don’t write down your password. Keep your password hidden from friends, colleagues, children etc.
  • Never provide your password via e-mail or phone. Don’t provide your password in any circumstances. If you are asked to provide your password then there is a high probability that someone is trying to trick you.
  • Keep your UiB password just for UiB. Do not use it as your password on other systems outside of UiB.
  • Do not type your passwords on computers that you do not control. Computers such as those in Internet cafés, shared systems, kiosk systems, airports etc. should be considered unsafe for any personal use other than anonymous Internet browsing.

The IT Department does not send passwords out by mail.

The Department needs to know that you really are who you claim to be, therefore you are required to turn to the IT Department in person, and to produce proof of identity.

We have to take a strict line on this to ensure maximums security of the users' data.


Forgotten password?

Note that the IT Department will not send passwords by mail or email.

Students

If you are a student, you can obtain a new password in the following way:

  • Go to https://sebra.uib.no/sebra/?lang=english, and select the "student" link under "Forgotten password" in the left margin menu.
  • You have to fill in your Studentweb-PIN code, as well as your student number and Norwegian personal ID (fødselsnummer).
  • If you have forgotten your PIN code, please contact the Centre for Information and Student Services in Langes gate 1-3. Remember to bring valid ID!

If you have forgotten the name of your UiB user account, you may follow the same procedure.

Employees and others

If you have forgotten your password an are not a student, you must show up in person at the IT Department's service desk BRITA in Nygårdsgaten 5. This goes for employees and others with a UiB user account (except for students).

Please remember to bring valid personal identification! - We need to know for sure that you actually are the person you claim to be.

Contact us at BRITA if you have any questions

If you feel the least bit unsure or have any questions, contact us at BRITA (555 84700) so we can help you. And remember: there is no such thing as a stupid question when it comes to IT security!