Password Registrars

A Password Registrar is an individual who has been authorized (by a department head, college dean, or CITES Help Desk) to change NetID passwords for other users.

The Registrar's ability to change passwords can be limited in a variety of ways, including particular groups of users (only people within the Registrar's department, for example), times of day (such as weekday mornings only), or even particular machines (such as the Registrar's computer only).

To become a Password Registrar

• Fill out the Request for Password Registrar Access form; note that the signature of a director or department head is required.
• Submit the form in person or mail it to CITES Help Desk, 1211 DCL, MC-256, 1304 W. Springfield Ave, Urbana, IL 61801, or fax the form to 217-333-4368. Note that the Password Registrar service manager may contact you for clarification of application information.
• Registrar applicants will be notified by email from the Help Desk that Registrar status has been granted.

To renew Password Registrar status

• Fill out the Request for Renewal of Password Registrar Status form; note that the signature of a director or department head is required.
• Submit the form in person or mail it to CITES Help Desk, 1211 DCL, MC-256, 1304 W. Springfield Ave, Urbana, IL 61801, or fax the form to 217-333-4368. Note that the Password Registrar service manager may contact you for clarification of application information.
• Registrar renewal applicants will be notified by email from the Help Desk that Registrar status has been renewed.

Requirements

A Password Registrar is responsible for upholding the University's Appropriate Use Policy and respecting the privacy of users.

A Password Registrar must be especially aware that passwords associated with an individual's network IDs and computer logins must not be shared. Compromised passwords may affect not only the individual, but also other users on campus or on the Internet.

In brief, the Password Registrar must agree to the following:

1. To change NetID passwords only by explicit request of the owner.
2. To change NetID passwords only after positively confirming the owner's identity, preferably by a University of Illinois photo ID.
3. To never reveal a NetID password to others.
4. To maintain a secure machine for Password Registrar functions: physically secure against unauthorized access and electronically secure by the timely application of patches.
5. To maintain the security of his or her NetID passwords.
6. To never use someone else's password to gain access to accounts or services.

A Password Registrar must reapply for Registrar status every year if he or she continues to require access.

Procedure for Password Registrars

1. Ask the client which password or what program application he or she needs to access. Ensure that theclient really needs to change his or her NetID password, and not some other password.

• Password Registrars can make changes only to the client's NetID Password.
• The client can change other passwords themselves, through the CITES Password Manager .

2. Ask the client for photo identification (preferably an i-card or a valid driver's license) to verify his or her identity.

3. Use the CITES Password Manager. The Password Registrar function is accessible from the CITES Passwords page.

4. On the Set CITES Passwords page, you will see the following:

Logged in as: yourname (yourNetID)
Changing Passwords for: yourname (yourNetID) [ Switch ]

Click on Switch to change to a different NetID.

5. Enter the client's NetID and click the Continue button.

6. The client must now create a password that conforms to the requirements for acceptable passwords. The basic rules are as follows:

• Length: 8-12 characters
• Three character classes: uppercase, lowercase, numeric
• No invalid characters (space, control, etc.)
• Does not contain parts of: Name, NetID
• New Password and Verify match

For password suggestions, click on Provide Random Sample Passwords.

7. Have the client type in his or her new password.

8. Click on the Set Passwords button.

• The password is checked to ensure that it conforms to other password rules, including the following:
  • The password cannot be a word in the dictionary.
  • It cannot contain a common sequence of keyboard characters (such as qwerty or asdf).
• If the password conforms to all the rules, the Success page will appear.

9. Tell clients the following:

• They will receive email confirming the transaction.
• They may change their NetID password again after 24 hours.
• They may use the CITES Password Manager to change other passwords immediately.