[For Staff Only]
Security measures for Staff UMPASS account Coming Soon - Enable Two-Factor Authentication (2FA) or Change Password Every 90 days
[僅供職員]
即將實施職員 UMPASS 帳戶的安全措施 - 啟用雙重認證(2FA)或每90天更改密碼
Ref. No : WHPG-C4P5GYPosted by :WHPang/UMAC
Department :ICTO-ACTSPosted Date : 08/07/2021
Category :
Bulletin
公告







English

      Dear colleagues,

      In order to improve security of user computing account and protect University data effectively, ICTO introduce new security measures for staff UMPASS account according to the "Acceptable Use Policy on ICTO Computing Facilities, Campus Network and Internet" and "Guidelines for User Account and Password". You must change the password every 90 days or enable the Two-Factor Authentication (2FA) for protection.

      - What actions are required?
      For all staff who has UMPASS account for accessing various applications and web services, we recommend you to enable Two-Factor Authentication (2FA) for protection. 2FA provides an extra layer of protection for your UMPASS account, and it aims to ensure that you are the only person accessing your account. 2FA will only be used when you access the protected systems through non-UM network. If you do not want to enable 2FA, you have to change your UMPASS password every 90 days.

      - When will the new security measures be implemented?
      ICTO will gradually apply it by department within this year. We will contact your department representative for exact date. ICTO Help Desk will provide on-site support for applying 2FA and changing password upon department request. Of course, you can enable 2FA in advance or change the password to strengthen your UMPASS account security.

      - Why I receive the Password Expiration Notice Emails?
      If you have not enabled 2FA and the last date you changed your password is older than last 60 days. Emails with subject "Your computer account password will soon expire - Please change password or consider applying for 2FA" will be sent to you automatically from "ICTO-noreply <ICTO-noreply@um.edu.mo>" for reminding that your UMPASS account will be expired within 30 days. . DO NOT reply to this kind of email with your password or any personal information. To verify the email, you can login to ICTO Account Information Page to check the last modified date of your password under the "Change password" session. If you find any suspicious email, please contact ICTO Help Desk.

      - What will happen after my UMPASS password expired?
      You account will be locked. You cannot connect to Wired and Wireless network, and cannot access all ICTO applications and web services.

      - How to enable 2FA?
      You have to download the "Duo Mobile" APP for your mobile device. Login to ICTO Account Information Page to apply the 2FA service, follow the instructions and complete the registration. Please refer to 2FA User Application Procedures for details.

      - How to change or reset password?
      At ICTO Account Information Page, you can change your UMPASS password. Please refer to this FAQ for details. You can recover your account by following this procedure, if you forget your password or your account is locked.

      Thank you for your attention. Please contact ICTO help desk if you have any questions.

      Reference:
      1. Acceptable Use Policy on ICTO Computing Facilities, Campus Network and Internet
      2. Guidelines for User Account and Password

      Help Desk
      Location : Room 2085, 2/F, Central Teaching Building (E5), eMap
      Telephone : 8822 8600
      email : icto.helpdesk@um.edu.mo

      Information and Communication Technology Office