Changing your NMU password

Documentation

Your NMU network password is used for your NMU services, such as MyUser, MyWeb, MyNMU, and your Exchange account. If you use your NMU email in Outlook or on your phone email, you will have to change your password there as well. If you forgot your password, follow these instructions.

  1. Go to https://myuser.nmu.edu/user Choose Mange User Account.

  2. Click on the "Change Password" tab located at the top of the page.

         

  1. Follow the instructions on the page, as listed below, and click "Submit." The page will not change, but confirmation text will appear in green.
    • must be 8 to 16 characters in length
    • first character must be a letter of the alphabet (a-z)
    • must contain at least one numeric (0-9) character
    • must contain at least one special character, special characters are ~!%^*_+-{}|[]\:?./
    • spaces are not allowed
    • passwords are case sensitive
    • passwords may not be reused for two years 

Changing my NMU UserID or Username

Documentation

The NMU UserID or username for NMU students and employees are based on the person's legal name. This requires a legal name change with the Social Security office and students updating the information with the NMU Records office. NMU Employees would make the change with NMU Human Resources office. See the MyNMU, Student Services, "Name Change-Information" link for the most up to date information.

Once the legal name change is reflected on the MyUser system the person can work with HelpDesk staff to delete the old account and the new account will be created overnight. It is highly recommended to make NMU UserID or username changes between semesters when the impact of grades and records, especially for courses taken or taught on Educat, will be minimized.

Other than a legal name change, people have the options anytime to change their preferred first name using information in the MyNMU, Student Services, "Name Change-Information" link and how their name is displayed from messages sent via their NMU G Suite account (See NMU G Suite account name changes).

2 Factor Authentication FAQs

Documentation

Where can I get a mobile authenticator app?

Where can I get a FIDO U2F Security Key?

Can I turn off 2 Factor Authentication once I have turned it on?

All of the methods have options to remove them.

How do I recover from losing my mobile authenticator app (new phone), backup codes, or security key?

If you need to change the settings and the normal 2 factor authentication login process is no longer available to you, the recovery process at myuser.nmu.edu/recover can be used to change your password and update your 2 factor authentication settings. It does not “use” 2 factor verification and you will not be prompted for 2 factor authentication when you go to myuser.nmu.edu/user to complete the recovery process.

Once you have changed your password, stay logged into myuser.nmu.edu and click on the Security tab. There you can update or modify your 2fa options.

What 2 factor authentication method do you recommend?

 

We recommend you enable at least 2 of the 2 factor authentication methods, generally the smart phone app is most convenient, and generate a new set of backup codes once you have used the 9th one in your current list. This way you always have more than one backup code available to you.

With any of the 2 factor authentication (sometimes referred to as 2FA or TFA) options, you should then use it to “trust” a number of computer browsers. You “trust” a device by selecting “Remember this computer for 30 days” option when you use the authenticator app. You should never select the Remember/trust option on someone else's device that you are only using for a one-time login. If you own or have “secure” access to multiple computer devices then you should trust more than one device. If you trust more than one device trust them on different days so if you can't login into one device the other device will still work for you. If you have trusted a device/browser then you have the remainder of the 30 day period to login and alter your 2 step verification.

Can I use myuser.nmu.edu/recover with 2 Factor Authentication on and I don't have a way to verify the second factor?

The recovery process started at myuser.nmu.edu/recover does not “use” 2 step verification, you will not be prompted for 2 factor authentication when you go to myuser.nmu.edu/user to complete the recovery process. The myuser.nmu.edu/recover process does allow you to select Mobile Authentication app as a method of proving your identity, but it then supplies you with a temporary password recovery code which you use at myuser.nmu.edu/user. Temporary password recovery codes which can also be supplied by the helpdesk staff will never invoke 2 factor authentication.

How can I tell which type of code is required for the 2 Factor Authentication if I have enabled the authenticator app and backup codes?

You can use either one. The “Use a different method” option may lists the options separately if you have enabled both, but you can actually use either source in the Enter Code field.

What happens once I run out of backup codes if that is the only 2 Factor option I am using?

Again if you have trusted a device, (and you should) you have 30 days (or less) to login from that browser/device and generate a new list of backup codes. We recommend after using up 9 codes that your next action should be to generate a new list at https://myuser.nmu.edu/user.

Otherwise you will need to use the recover option to change your password as described above.

What happens if Google Authenticator stops working?

It quite possibly is out of sync with the correct time. The following website has instructions for Android and iPhone: my two factor codes aren't working

 

See also: Setting Up 2 Factor Authentication

Account Lockout Types

Documentation

NMU users can be locked out of their NMU account (MyUser, MyNMU, Webmail, etc.) for various reasons, as listed below. Some of these lockouts can be fixed by the user, but many of the account lockout types will need the assistance of the Helpdesk to unlock. While locked out, a user will be unable to access most account services and will not have network access.

  1. Copyright Violation - When a user is caught illegally downloading music, games, movies, or anything else defined as illegal in the Acceptable Use Policy, this type of lockout can occur. NMU will contact the user's email address, and then the user will have to come to the Helpdesk after his or her second offense to have a full-time staff member unlock the account. The user will also need to sign a waiver for the copyright violation. You can review the copyright violation system here
  2. Password Recovery - If a user has forgotten his or her password and was unable to answer their challenge question through the password recovery system, the account will be locked and the user will need to come to the Helpdesk with photo identification. 
  3. Virus Lockout - If a user has a device registered to his or her account that is infected with a virus, the user will be deregistered and will have to come to the Helpdesk for virus scans and to get the account unlocked. 
  4. Spam/Compromised Account Lockout - If a user's account is locked due to spam, or identified in other ways as a compromised account , the user's account will be locked and unable to access email and other account services. The user should be able to log into MyUser to change his or her password and unlock the account. If not, the user will have to visit the Helpdesk to have the account unlocked. 
Subscribe to MyUser