Keep your university account safe & setting up MFA

Setup or access your computer account

If you’re joining the University for the first time, activate your University student account and then gain access to your Microsoft Outlook email account by following these steps:  

1. Find your Student Number (it will be a seven digit number) 

You’ll find this in the application email sent to your personal email address. 

2: Activate your University Network Account 

If you haven’t already done so, activate your student account to generate your University username and password. 

• Your username will look like: up1234567 (“up” followed by your student number) 

3: Log into your Microsoft Outlook email account 

Sign in to Outlook.com using your University email address and password. 

• Your email address will be: up1234567@myport.ac.uk (up followed by your own student number) 

• Your password is the same as the one you set up in step 2 

• Reset if you've forgotten your password  

4: Set up Multi-Factor Authentication (MFA) 
On your first login, you’ll be prompted to follow the instructions to set up MFA.

5: Need Help? 

If you need any support please contact IT support.

Continuing students

If you're an existing student and have forgotten your computer account username and/or password, you can find your details in your Student Account.

If you continue to have problems with your account, contact IT support with your student ID number.

Change or recover your password

Choosing your password

Passwords are the first point of attack for anyone trying to steal your data. The University guidelines state a password should be made up of a mixture of:

• English uppercase characters (A–Z)
• English lowercase characters (a–z)
• Numbers (0–9)
• Non-alphanumeric characters (e.g. !, $, #)

Passwords should not be only a single dictionary or slang word and they shouldn't contain personal information such as names, pet names, maiden names, birthdays, car registration and similar personal data. Also do not reference hobbies such as football teams, actors, and band names.

The primary goal is to create and use ‘strong’ passwords – which are easy to remember and difficult to guess. There are 3 strategies recommended by the University:

Use a passphrase

1. A passphrase is generally a longer version of a password and is typically composed of multiple words: The following is a suggested method for creating a strong Passphrase:
2. Pick 3 short unrelated words: e.g. tree, witch, rock
3. Capitalise the first letter of each word: Tree, Witch, Rock
4. Separate each word using a punctuation symbol: Tree?Witch?Rock

Add a number: Tree?Witch?R0ck

Use word association

• Amazon – b00ks_&_DVD5 or B00K5//on=line
• PayPal – M@KE-payment5 or is=1T=5AFE?

Use a song or poem

• "Mary had a little lamb, its fleece was white as snow.
• This becomes: MHALLIFWWAS or mhall-IFWWA5

Keeping your password safe

Never share your password with anybody. No reputable service representative will ask you for your password. This kind of attack is known as phishing – someone will pretend to be from your bank or payroll office or Service Desk and ask for the password. This will never be required by a legitimate organisation.

All modern mobile devices allow you to protect your data with a secure pin or password. We encourage everyone to use this feature.

Use different passwords for different systems just as you would have different keys for different doors in your home. Some services offer a password hint. Should a password hint be available, do not use something obvious such as including the line used from a song or poem.

If you've been given administrator access to a system, only use this login when you are required to perform a task which requires your access privileges to be raised.

Further information can be found in the IS Security Advisory on Password Security.

Information Security Advisories

As technology develops, new risks and security issues also develop and policies and procedures must adapt quickly to meet the challenges. A central problem in this ‘arms race’ is communication. It can be hard to find the right information and find it quickly when you need it. University staff and students need to have easy access to clear and relevant security guidance. For security management, creating new information or updating existing procedures can be slow and bureaucratic. The University must be agile in creating and publishing security advice.

The IS Advisories are designed to be subject-focused documents, providing clear guidance in supporting the Information Security Policy and Acceptable Use Policy. All IS Advisories are approved by the IS Board and published on the eRecords system.

Advisories supporting the secure use of University IT resources.

• Secure Operations
• Systems Development and Maintenance
• Charter for System and Network Administrators
• Cloud Computing
• Secure Disposal of Redundant IT Equipment
• Handling Illegal Material
• Asset Management
• Patch Management

Advisories governing the identification of account users and protection of account access. This includes the physical access to buildings housing IT equipment.

• Google Apps Admin Account Access
• Data Centre Access
• Generic User Accounts
• Third Party Access Procedures
• Password Security
• Physical Security
• Wireless AMP User Regulations
• Secure Remote Access
• Privileged Access

Advisories specifically aimed at protecting the security of IT infrastructure.

• Bring Your Own Device
• Malicious Software
• USB Memory Sticks
• University Supplied Mobile Devices
• Immediate Response to the Loss of a Data Device

Advisories which support good security practice – particularly in relation to copyright, data sharing and intellectual property.

• Advance Passenger Information
• Transferring Restricted Data by Email
• Shared Laptops - Staff

Advisories which deal with vulnerability scanning, penetration testing.

• Activity Monitoring
• Network Vulnerability Assessment
• Alerts from Unusual Activity