Set up your password

When you start at Murdoch you need to set up your password. To ensure your new password meets the requirements and is secure, refer to create a strong password.

Students

You will be prompted to set up your Murdoch password when accepting your offer to study at Murdoch. Details of this process are included in your offer letter.

You can set up your password later by logging into the  Online Response System. If you do not have a Murdoch password, contact IT Service Desk.

Staff

If you are a Murdoch staff member or contingent work (contractor, etc.) you can create your Murdoch password using the  password reset. This process will send a code to your mobile and/or personal email address (that you have registered with HR) that you can then use to change your password. If you need to update your mobile and/or personal email address please do these via myWorkday or contact People & Culture via Murdoch Support.

 

Self-service password reset

The first time you log in to a Murdoch system, you will be asked to provide some additional information to allow you to reset your password if you forget it.

Set up self-service password reset

Change or reset your password

Changing your password regularly helps keep your account and personal details secure. To ensure your new password meets the requirements and is secure, refer to create a strong password.

    Change your password

    If you know your current password, you can change it at any time.

    Change password

    Reset your password

    Requires your personal verification details. If you don't have your details set up, contact IT Service Desk.

    Creating a strong password

    Passwords help protect you against identity theft. It is important that passwords are complex enough that they cannot be easily guessed, and that they are changed frequently.

    Password requirements

    Your password must be between 8 and 30 characters and include:
    • at least one upper case alphabetic character (A-Z)
    • at least one lower case alphabetic character (a-z)
    • at least one numeral (0–9) or special character (*|+#) but not an ampersand (&) or double quotes (").
    Your password must not:
    • match any previous passwords
    • include any characters occurring more than four times
    • include alphabetic or numeric sequences of three or more characters (e.g. abc, 123)
    • include keyboard sequences of three or more alphabetic characters (e.g. qwerty)
    • include six or more sequential characters from your Murdoch username
    • include three or more sequential characters from any part of your name
    • include your date of birth.

    Password recommendations

    Create a passphrase

    Use symbols and numbers to replace some of the letters, to make a passphrase that is both strong and easy to remember. For example, "gibsonplayauthentic" can be rewritten as "gibs0nplay@uthentic".

    Don’t use any of the following, spelled either forwards or backwards:
    • names of anybody or anything associated with you (e.g. family, friends, pets)
    • numbers associated with you (e.g. birth date or year, phone number, license plate number)
    • words found in an English or foreign language dictionary
    • place names
    • proper nouns

    or any of the above followed or preceded by a single numeric character and a single special character.

    Don’t share your password or write it down

    Your password should remain private. Do not share it with anyone, write it down or store it in an email or text file.

    Use a password manager

    Install a free, open-source password management tool like KeePass or Bitwarden to help generate, manage and store your passwords securely.

    Don’t use 'Remember Password' option

    Passwords saved to your computer or browser are a security risk, as they may be accessed by others from your computer or through attacks on outdated browsers.

    Change your password frequently

    It is recommended that you change your password for critical systems and accounts, including your Murdoch account, every 90 days.

    Don't reuse passwords

    Multi-Factor Authentication (MFA)

    Multi-Factor Authentication (MFA) is an additional layer of security to access and log into systems. For example:  a debit card is the physical item you carry around, and your Personal Identification Number (PIN) ensures the card cannot be used by itself. MFA is a proven security measure to mitigate fraud, phishing and account takeover.

    Your username and password are the first layer of security. Your phone will provide a second layer of security to authenticate your access to MU systems.
    Relying on only passwords to protect your account when accessing MU systems poses a cyber security risk in that hackers can more easily access your login details. MFA allows an extra layer of security - an additional login authentication requirement, which passwords alone cannot provide.

    Our MFA allows you to verify your account by

    1. sending an SMS with a verification code to your mobile phone, or;
    2. sending a notification via the Microsoft Authenticator app.

    We highly recommend that you setup and choose Microsoft Authenticator app as your default sign-in method as this is provides more security over verification SMS code. Instructions on how to set up Microsoft Authenticator app as your default sign-in method can be accessed here.

    The Microsoft Authenticator app is supported on iOS and Android phones and mobile devices such as smartphones and tablets. 
    Once MFA has been implemented to your account, you will not be able to access MU systems unless you set up your MFA. Setting up your MFA is easy – it is a one off set up, it takes 15 minutes and can be done anywhere that you have internet connection. Set up instructions are available here.
    You will need to download the Microsoft Authenticator app on your smartphone and/or other devices (e.g. tablets) and follow the MFA setup instructions.
    If you have any queries or require support to set up MFA, please contact our IT Service Desk on +61 8 9360 2000.

    Need help?

    Contact our experienced IT Service Desk team.