MyPass/Password Guidelines

MyPass

Concord University recognizes its obligation to responsibly handle sensitive information related to students, employees, and affiliates of the University. To assist in safeguarding such information, the University has implemented new password management software.  This software, called MyPass, is designed to give faculty, staff, and students the ability to not only change the password on their accounts whenever they choose, but to also reset and unlock their accounts when situations arise where they are unable to log in due to incorrect or unknown passwords, or, when their accounts are locked. End users no longer have to wait for a time when the IT Help Desk is open to get assistance with accessing their accounts, they can now take matters into their own hands and change, reset, and/or unlock their own accounts whenever necessary. Some highlights of MyPass are as follows:

  • MyPass can be accessed by going to www.concord.edu/mypass
  • Users must be enrolled in the software before they can use it.  
    • All current CU students have been automatically enrolled into the software, and their security questions/answers have been pre-populated based on data stored in our database.
    • Faculty and staff will need to enroll themselves by going to the webpage and clicking on the Enroll link.  
  • In order to reset or unlock your account you must answer the three security questions attached to your account on MyPass.  
    • Students may change their defaulted security questions to any of their choosing by selecting the Re-Enroll link.
    • When enrolling or re-enrolling all users can choose from either pre-defined questions, or they may create their own.
  • In order to change your password you must know your current password.  

Password Guidelines

As part of the MyPass introduction, the University has also implemented a set of new password complexity guidelines.  The following guidelines must be met when changing and resetting your password:

  • Passwords are to be a minimum of 10 characters and are to include three of the following conditions:
    • Uppercase letter
    • Lowercase letter
    • Number
    • Non-alphanumeric character (#, $, %, !, etc.)
  • Passphrases should be used when possible because they can be easier for a user to remember, while at the same time being harder for a third party to crack.  A passphrase is a set of words that should include the following:
    • Numbers
    • Special characters
    • Uppercase letters
    • Lowercase letters
  • Individuals with local administrator access, or those that use a laptop should adhere to the guidelines above. 
  • Individuals may not use any of the 5 most recent passwords used on the account, even if the password meets the new complexity guidelines. 

***It is important to remember that commonly used passwords such as 'Concord', 'Password', '1234', or your username can no longer be used.  All passwords must adhere to the above guidelines.  

Password Sharing- Under no circumstances should any University employee share their password with colleagues, student workers, students, or outside entities.  The Office of Technology Services will never request an individual's password.  If there is concern that your account has been compromised, please change your password immediately and contact the Technology Services Help Desk.