+ Post New Thread
Results 1 to 10 of 10
Network and Classroom Management Thread, Password Policy in Technical; I've had a request from one our governors regarding our password policy for students. She wants to know what other ...
  1. #1

    Join Date
    Nov 2008
    Location
    UK
    Posts
    8
    Thank Post
    5
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Password Policy

    I've had a request from one our governors regarding our password policy for students. She wants to know what other schools enforce as she thinks ours should be along the lines of at least 8 characters including numbers and symbols and a history of ten passwords. I think is overkill for students but I would welcome any comments.
    Last edited by asheppard; 9th May 2013 at 09:29 AM.

  2. #2

    synaesthesia's Avatar
    Join Date
    Jan 2009
    Location
    Northamptonshire
    Posts
    6,042
    Thank Post
    590
    Thanked 1,032 Times in 791 Posts
    Blog Entries
    15
    Rep Power
    467
    I'd agree it's overkill as a blanket policy but maybe in this day and age it's time to start pushing it as an important lesson. Maybe a little too much for year 7's though.

    However, as has already been proven and mentioned, passwords are better off being a mixture of "odd" and unrelated words even if they are dictionary. It surprised me how many of our students have sentences for passwords. Works rather well - starts with a capital (maybe more), has spaces. Difficult to enforce though!
    It would almost certainly increase your workload if you deal with password changes, or if staff are able to change passwords it would quite likely add time to the start of lessons.

  3. Thanks to synaesthesia from:

    asheppard (9th May 2013)

  4. #3

    unixman_again's Avatar
    Join Date
    Nov 2011
    Posts
    751
    Thank Post
    30
    Thanked 149 Times in 113 Posts
    Rep Power
    136
    Experience has shown that a history of any more than 3 passwords will leave you with a lot of angry users. If you really want to piss off your users, enforce that passwords have to differ from the previous one by several characters. We enforce 8 characters, mixture of letters and numbers, but no expiry. We have lockout after three failed attempts to login and students have to come and see us for unlock.

    A few weeks ago, we had a flood of students coming in with locked accounts. One of the students was noting down user ids, and trying random passwords to lock the account for "fun". If I had my way, he'd be hanging up in the server room by his gonads. As it happens, SMT had us disable his account for a week and they had a word with him. It's all gone away now and we're back to the usual trickle of locked accounts. Bad password entry is now because the caps lock is on or simple "sausage fingers".

  5. Thanks to unixman_again from:

    asheppard (9th May 2013)

  6. #4

    Join Date
    Aug 2007
    Location
    Deal, Kent
    Posts
    343
    Thank Post
    12
    Thanked 73 Times in 51 Posts
    Rep Power
    27
    We have minimum 6 characters, last 3 remembered, 90 day expiry.

    This does not apply to the Junior School though - they get no expiry.

    Simon

  7. Thanks to Psymon from:

    asheppard (9th May 2013)

  8. #5
    rad
    rad is offline
    rad's Avatar
    Join Date
    Jan 2009
    Location
    Middlesex
    Posts
    2,501
    Thank Post
    336
    Thanked 310 Times in 238 Posts
    Rep Power
    110
    PC and email have no expiry and I no enforced rule for either. Its bad enough some forget what they set it as yesterday let alone what their last three were.

    We as staff have no rule on PC but email has to have at least 3 numbers.

  9. Thanks to rad from:

    asheppard (9th May 2013)

  10. #6


    Join Date
    Mar 2009
    Location
    Leeds
    Posts
    6,627
    Thank Post
    229
    Thanked 861 Times in 739 Posts
    Rep Power
    297
    i just find if you enforce complex passwords you just end up with monitors/desks with post it notes on them with the password making it less secure

  11. Thanks to sted from:

    asheppard (9th May 2013)

  12. #7

    Join Date
    Nov 2008
    Location
    UK
    Posts
    8
    Thank Post
    5
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Thanks for all your views. The other complication we have is that we a significant proportion of students with dyslexia which obviously causes issues.

    At the moment we have four character minimum which expires at the standard 42 days. We are also still running 2003 AD mode because of a legacy DC/Exchange server that we are decommissioning during the summer holidays. Once we upgrade to 2008 AD mode we can at least force the staff to use a strong password without upsetting the students too much!

  13. #8
    DrPerceptron's Avatar
    Join Date
    Dec 2008
    Location
    In a house
    Posts
    926
    Thank Post
    34
    Thanked 134 Times in 114 Posts
    Rep Power
    41
    minimum of 5 characters, no history.

    One day, when someone tells me to change them and what to, they'll take advantage of the multiple password policies in 2008 R2 and KS3, KS4 and KS5 will have progressively more complex requirements.

  14. #9

    witch's Avatar
    Join Date
    Nov 2005
    Location
    Dorset
    Posts
    11,358
    Thank Post
    1,393
    Thanked 2,406 Times in 1,692 Posts
    Rep Power
    708
    Two unrelated four or five letter words eg cart.next
    No expiry at all

  15. #10

    Join Date
    Apr 2012
    Posts
    417
    Thank Post
    39
    Thanked 35 Times in 28 Posts
    Rep Power
    15
    We have complex on for students, but doesn't expire.

    Staff have complex, change every 31 days, cant use previous password.

    I had change every 30 days for both, but students are useless, especially as we are a middle school so kinda stuck in the middle of age ranges.

SHARE:
+ Post New Thread

Similar Threads

  1. Password Policy - 2003
    By timbo343 in forum Windows
    Replies: 10
    Last Post: 15th October 2008, 08:51 AM
  2. Password policy for remote users
    By cookie_monster in forum Windows
    Replies: 4
    Last Post: 18th May 2008, 03:46 PM
  3. The answer to multiple password policies
    By binky in forum Windows
    Replies: 2
    Last Post: 6th July 2007, 12:08 PM
  4. Setting up the Password Policy on domain.
    By tosca925 in forum Windows
    Replies: 5
    Last Post: 13th June 2007, 08:28 PM
  5. Setting password policy at OU level.
    By tosca925 in forum Windows
    Replies: 9
    Last Post: 5th June 2007, 05:36 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •