Password Management
DO – Give Everything a Password
Many software products come with a blank password by default. Using anything as a password is better than a blank password.
DON’T – Make Your Password Too Obvious
Try to avoid passwords with obvious personal significance…your last name for example. And don’t use default passwords such as the words ‘password’ or ‘administrator’.
DON’T – Make Your Password Too Short
Use at least 8 characters or more to create a password. The more number of characters we use, the more secure is our password. For example, create a password from a sentence or phrase consisting of a combination of lowercase, uppercase, numbers and special characters etc.
DON’T – Use Common Dictionary Words
Software programs that use dictionaries as the basis for their attack strategy are commonly available. A computer conducting a ‘dictionary’ attack can try every word in its dictionary in a few minutes. Most dictionary attack programs also check proper names, common misspellings, words with numbers appended or preceding, and foreign language words.
DON’T – Use the Same Password Over and Over Again
Passwords should be changed on a regular basis, at least once every 60 days. The primary reason is that if someone has cracked your password without you being aware of it, it makes them have to start all over again. A strong password is never reused.
DO – Use a Unique Password for each Unique Account
Having separate passwords for every account helps to thwart cyber criminals. At a minimum, separate your work and personal accounts and make sure that your critical accounts have the strongest passwords. You can make use of passphrases to construct your passwords.
DO – Check Your Surrounding
Be careful while entering a password when someone is sitting beside or behind you.
How to Construct a Strong Password using a Sentence/Phrase
Should you have any issues with your account password kindly call ICT Services on 2236 or send an email to support@strathmore.edu.
An alphanumeric password can be used as an alternative to a passphrase
Requirements for complexity
Passwords must be 8 characters or longer.
At least three of the following character categories must be included in the password:
-Case insensitive characters (A-Z)
-Characters in lowercase (a-z)
-Digits (0-9)
-Special characters (!@#$ percent &*_-+=’|()[]:;”‘>,.?/)
Introduction
This document guides you through the usage of the Password Self Service System to:
- Change your Password
- Gain access to your account when you forget your password
- Unlock your Account
1. Change your Password
Follow the following steps in case you’d like to change your password for any reason e.g. in case you suspect that it has been compromised.
- On your browser, head to https://su-sso.strathmore.edu/staff-pss. You should see the following login screen
- Enter your username and password and click the sign in button. If you are successfully logged in, you should see the dashboard screen below:
- Click on “Change Password”. You will see the screen shown below. Enter your new password and confirm it and then click the Change Password button.
2. Gain access to your account when you forget your password
Follow the steps below in case you have forgotten your password or it has expired.
- On your browser, head to https://su-sso.strathmore.edu/staff-pss. You should see the following login screen
- Click on the “Forgotten Password” button. You will see the screen below. Enter your username and click search:
- An email will be sent to your Strathmore email address with a security code. Copy and paste the code in the text box labelled “Code” and click the button “Check Code”
- If the code is correct, you will be allowed to change your password. Enter your new password, confirm it and then click on the “Change Password” button to effect the change.
3. Unlock your account
User accounts will be automatically locked after 5 failed login attempts to any University system or machine.
If your account is locked, you will see the following screen with an alert if you attempt to log in to the Password Self Service portal: Maximum login attempts for your Account has been exceeded. Please click on the “Forgotten Password” button to unlock your account or reset your password.
- Click on the “Forgotten Password” button to unlock your account.
- An email will be sent to you with a security code. Copy and paste the code in the text box labelled “Code” and click the “Check Code” button.
- You will then be presented with the following screen. Choose your preferred option.
- If you still remember your current password, click on the “Unlock Account” button and your account will be unlocked.
- If you do not remember the password, click on the “Change Password” button to change your password.
NB: In case you are locked out of your office computer, you can use any other device to access the portal (e.g. your phone, tablet, a colleague’s computer etc.) and change your password. You will also need access to your email so as to get the security code that is sent to you.
Kindly contact the ICT Client Support Services office via support@strathmore.edu or extensions 2236/2251 in case of any issues or queries.
Introduction
This document guides you through the usage of the Password Self Service System to:
- Change your Password
- Gain access to your account when you forget your password
- Unlock your Account
1. Change your Password
Follow the following steps in case you’d like to change your password for any reason e.g. in case you suspect that it has been compromised.
- On your browser, head to https://su-sso.strathmore.edu/student-pss. You should see the following login screen
- Enter your username and password and click the sign in button. If you are successfully logged in, you should see the dashboard screen below:
- Click on “Change Password”. You will see the screen shown below. Enter your new password and confirm it and then click the Change Password button.
2. Gain access to your account when you forget your password
Follow the steps below in case you have forgotten your password or it has expired.
- On your browser, head to https://su-sso.strathmore.edu/student-pss. You should see the following login screen
- Click on the “Forgotten Password” button. You will see the screen below. Enter your username and click search:
- An email will be sent to your Strathmore email address with a security code. Copy and paste the code in the text box labelled “Code” and click the button “Check Code”
- If the code is correct, you will be allowed to change your password. Enter your new password, confirm it and then click on the “Change Password” button to effect the change.
3. Unlock your account
User accounts will be automatically locked after 5 failed login attempts to any University system or machine.
If your account is locked, you will see the following screen with an alert if you attempt to log in to the Password Self Service portal: Maximum login attempts for your Account has been exceeded. Please click on the “Forgotten Password” button to unlock your account or reset your password.
- Click on the “Forgotten Password” button to unlock your account.
- An email will be sent to you with a security code. Copy and paste the code in the text box labelled “Code” and click the “Check Code” button.
- You will then be presented with the following screen. Choose your preferred option.
- If you still remember your current password, click on the “Unlock Account” button and your account will be unlocked.
- If you do not remember the password, click on the “Change Password” button to change your password.
NB: In case you are locked out of a lab computer, e-Learning or AMS system, you can use any other device to access the portal (e.g. your phone or tablet etc.) and change your password. You will also need access to your email so as to get the security code that is sent to you.
Kindly contact the faculty assistants in your respective schools/faculties in case of any issues or queries.
© 2023 Strathmore University ICT Services
CONTACT US
Central Building
support@strathmore.edu
Ext 2236, 2251, 2157, 2437
+254 703 034000/236