A password reset token is a special code that allows you to set your
password without knowing its current value. Password reset tokens may be
issued by your departmental or college administrators, or by University
Information Services.
The token itself should be 16 alpha-numeric characters (letters and
numbers). It is not case-sensitive and the hyphens are optional.
NOTE: The password reset token will only be valid for a limited time
and will become invalid once it has been used successfully.
Be sure to memorise your new password now.
General tips:
- Use at least 16 characters.
- Use a random mixture of upper and lower case letters, numbers, and
symbols (but remember that you may need to enter it on a tablet or a
smartphone).
- Avoid dictionary words, names, dates or common phrases.
- Avoid simple sequences or keyboard patterns such as "qwertyuiop" or
"23456789".
- Consider using the random password generator provided.
The password strength indicator helps to identify common weak passwords.
As a guide, you should try to use passwords with a strength value of 50%
or higher.
NOTE: for compatibility with a wide range of systems, passwords
must only contain
ASCII printable characters.
A strong password is useless if attackers are able to get hold of it:
- Never store your password on your computer except in an encrypted
form.
- Don't tell anyone your password, not even your system
administrator.
- Never send your password via email, text message or other unsecured
channel.
- Only type your password into official University systems.
- If you believe your password has been compromised, you should change
it immediately.
