UCit is significantly enhancing the security of central IT systems by requiring the use of strong passwords. A recent audit of passwords in use at UC showed that it is common to use standard English words of only four or five characters.  Such passwords can be broken in seconds by freely available password cracking software.  A strong password uses more than the standard lowercase alphabet, is not a word found in any dictionary, and is at least eight characters long. 
UC central systems will begin to require strong passwords on July 29.  After that date, passwords being created or changed must contain: at least one lowercase letter, at least one uppercase letter, at least one number, and must be a minimum length of eight characters.  We also recommend that you include a symbol (@!#$%^&|;:, … etc.) in your password, but it is not required.
This change affects Exchange, Content Management & Central Login Service (CLS) pages including: One Stop, UC Flex, and all others featuring the attached graphic.  For a full list of affected applications, please click here:
Most users will not have to change their passwords on July 29.  Your current password will continue to work until it expires and you are prompted to change it.  At that time, the system will require that you choose a strong password.  Once you select a strong password, it will be valid for six months, at which time the system will prompt you to change it again.
You can find tips on selecting a strong, easy to remember password at: http://www.uc.edu/infosec/HowToChooseAPassword.htm