Setting Up a Recovery E-mail
Cornell has updated its password recovery process and staff are now prompted to set up a recovery email when logging into Cornell websites.
This change allows you to reset a lost or forgotten NetID password without needing to contact the IT Service Desk which previously required verifying your identity through multiple forms of ID or answering security questions.
Going forward, you can reset your NetID account password with your recovery email address.
To set up or check your recovery email, visit: Set a NetID Recovery Email Address | IT@Cornell
Important: A recovery email address should be one that you use regularly, but it must NOT be your Cornell NetID email address. Make sure you use a non-Cornell account that only you can access.
NetID password policy changes
On Tuesday, September 30, Cornell IT updated the password policy to require 16-character passphrases.
A passphrase consists of 4 to 7 words and may include spaces. Special characters are no longer required. A long, well-crafted passphrase can be more secure than a short, random string because its length makes it harder to crack through brute-force or dictionary attacks—while still being easier to remember.
Examples:
- “Sunshine-river-couch-1984”
- “correct horse barn stable rainstorm”.
Important: Never reuse passwords from other sites or accounts. Instead use the below tips for creating a strong passphrase.
- Choose a phrase or combination of words that are memorable to you but hard for others to guess.
- Avoid common catchphrases, memes, movie titles, popular song lyrics, personal details about you, searchable information (like your hometown or street name), or keyboard patterns like “qwertyuiop asdfgh” or “1234567890123456”.
You do not need to change your password right away, but the new rules will apply the next time you change or reset it. More info at: https://itservicealerts.hosting.cornell.edu/view/7612
Learn more: