I have 16 separate passwords for work. Yes, 16: Computer log-on, network access, email, office instant messenger, voicemail, financial mainframe, financial system, timesheet reporting, electronic pay-stub, web-based data report tool, web-based data storage, financial planning system, travel system, electronic file cabinet, room reservation tool, e-learning site.
I would have no problem with this password overkill if I could use the same password in all sixteen instances. However, some of the passwords listed above have annoying requirements, which oftentimes conflict with others. Some must include a number, a symbol, a capital letter, and no string of consecutive letters that form a word found in a dictionary. Some passwords are numerical only. Some of the passwords are just "assigned" to the user and never change. Some of the passwords are linked to other passwords (so when you change one password, you unwittingly change 3 other passwords without notification). One system briefly had a requirement that passwords be in ALL CAPITAL LETTERS. Fourteen of my 16 passwords must be at least 8 characters long, but none can be longer than 10.
When I first started working here, I devised a single password that met all the password requirements for all of the systems. I thought I was a genius! Little did I know that each system has a different "valid for" period, which quickly rendered my super-password useless. Some passwords need to be changed every 6 months, most are valid for 90 days, several expire every 45 days, and 2 of them never have to be changed. These varying timetables, applied over the last 2.5 years on a constantly rotating basis, have led to my passwords becoming really f--d up!
I would say that I currently have 5 major passwords, spread across the various systems. But there's no logic to how I have them grouped. All of my financial passwords are different. All of my Lotus Notes based passwords are different. I literally have no clue what my electronic file cabinet password is (starting 6 months ago we were supposed to save copies of ALL important emails using this system - orders from the President!). To keep it all straight, I have a sheet of paper tucked away in a desk drawer that lists all of my passwords for each system. Yes, I understand that keeping a written list of my passwords right next to my computer defeats the purpose of having passwords and/or rotating passwords so often. But it's way better than forgetting one!
My coworker forgot her password to the financial system this morning. Up to 50% of our day is spent working in this system. She has sent several emails and even called the system helpdesk to try to get her password reset, but as it turns out there are only 2 people in the whole FederalEntity that have the power to do so. One is on vacation today, and the other isn't answering his phone (he's probably out as well). So it looks like she's off the hook on a lot of work until tomorrow. Hmm, now that I think about it, forgetting a password doesn't sound so bad!
1 comment:
My friend work in Berlin at our ministry of health and he has 20 passwords!
Post a Comment