Managing Passwords

Your username and password give you privileged access to Aberystwyth University systems, many of which contain personal and sensitive data. Passwords are an important aspect of computer security. They are the front line of protection for user accounts. A leaked password may result in the compromise of the University's corporate network.

All users are bound by Information Services IT Regulations which include a requirement to keep your credentials secure:

• Do not share your password with ANYONE,including friends, family, colleagues, or other members of staff.
• Do not use the same password for University accounts as for non-University access such as a personal ISP account or an online shopping site/mail-order login
• Do not type your password in an email.
• Do not write your password down.
• Do not store your password in a file or any computer system.
• Do not use obvious passwords.
• Do not talk about your password in front of others.
• Do not reveal a password on questionnaires or security forms.
• Do not use the "Remember Password" feature of applications.
• Do not use your username and password to log in to web sites or services you do not recognise.
• Do not log in to web sites which show a Not Secure next to the address bar or click through your browser security warnings.
• Do not leave a logged in computer unattended and unlocked.
• Do not allow others to use a computer or service logged in with your credentials.

If you think your password may have been leaked, report the incident to Information Services and change the password immediately.

You must change your password when asked to do so by Information Services. You can choose to change your password more frequently if you wish.

You can change your password via:

• https://myaccount.aber.ac.uk

These Regulations are maintained by Information Services, were last reviewed in June 2022 and are due for review in August 2023.