Introduction

In order to improve security of user computing account and protect University data effectively, ICTO introduced new security measures for staff UMPASS account according to the “Acceptable Use Policy on ICTO Computing Facilities, Campus Network and Internet” and “Guidelines for User Account and Password“.

All staff members are required to change the password every 90 days or enable the Two-Factor Authentication (2FA) for protection.

For all staff who has UMPASS account for accessing various applications and web services, we recommend you to enable Two-Factor Authentication (2FA) for protection. 2FA provides an extra layer of protection for your UMPASS account, and it aims to ensure that you are the only person accessing your account. 2FA will only be used when you access the protected systems through non-UM network. If you do not want to enable 2FA, you have to change your UMPASS password every 90 days.

ICTO will gradually implement the new security measures by department within this year.

Schedule Target Users No. of users
July – September 2021 Regular/ non-regular administrative staff and non-regular research staff 1,474
October – December 2021 Regular/ non-regular academic staff 491

ICTO Service Desk will contact your department representative for the exact implementation date and will provide on-site support to apply 2FA/ change password upon department request. Of course, you can enable 2FA or change the password at any time to strengthen your UMPASS account security.

If you did not enable 2FA or change your password before the implementation date, emails with subject “Your computer account password will soon expire – Please change password or consider applying for 2FA” and with sender “ICTO-noreply <ICTO-noreply@um.edu.mo>” will be automatically sent to you to remind that your UMPASS account is about to expire.

DO NOT reply to this kind of email with your password or any personal information. To verify the email, you can login to ICTO Account Information Page to check the last modified date of your password under the “Change password” session. If you find any suspicious email, please contact ICTO Help Desk.

Your account will be locked. You cannot connect to wired, wireless network and all ICTO applications and web services.

You can change your UMPASS password via ICTO Account Information Page. Please refer to the FAQ for details.

If you forget your password or your account is locked, you can recover your account by following this procedure.