Account Security

How do I keep my information safe?

Since your SacLink account provides access to so many campus services, it's vital to keep your account information to yourself. Never share your account information with anyone. Safeguard your work and systems. Always follow these rules:

  • Use a strong password or passphrase
  • Protect your password
  • Protect confidential information
  • Update system patches, security fixes, and anti-virus software
  • Use secure and supported applications
  • Don't open suspicious e-mail attachments
  • Back up your data
  • Use a password protected screen saver to "lock" your computer when unattended, and turn off your computer at night(unless it is backed up at night and must be left on)

For more information, visit the Information Security website at http://www.csus.edu/irt/is/

Additional Resources:

What are the requirements of a strong password?

Each password must meet the follow requirements

  • Use at least 12 characters for your password.
  • Not contain your SacLink Username or any part of your full name.
  • Not use an old password.
  • Ensure your password contains characters that can be typed on a standard English (US) keyboard.
Additional Resources:

I am ready to change my SacLink password, but what is the difference between a password and a passphrase?

A password is used as a form of authentication to access personal data. Many believe that passwords should be based off of words when in fact; this leaves the account susceptible to being compromised. A technique used to create a stronger password is using a passphrase. A passphrase technique allows for stronger versions of a password. A passphrase technique is similar to an acronym, often including special characters and numbers.

An example of this would be the phrase “Waiting For Graduation” but it would be typed out as “W41TIN4GR4D!” The phrase should be something meaningful to you so it can be easily remembered. Such techniques help maintain a higher level of security. For more information and suggestions on creating a strong password, or how to use the passphrase technique please refer to About Passphrase below.

Additional Resources:

What policies are in place to help ensure account security?

The Board of Trustees of the California State University (CSU) is responsible for protecting the confidentiality, integrity and availability of CSU information assets. Unauthorized modification, deletion, or disclosure of information assets can compromise the mission of the CSU, violate individual privacy rights, and possibly constitute a criminal act. You can view the policy here.

Additional Resources:

What are some personal steps I can take to help ensure my account’s security?

There are some basic steps you can take to ensure your account remains secure. The most important aspect is retaining the security and protection of a strong password for any account associated with Sac State. For more tips on account security, see Security below.

Additional Resources:

To whom should I give my password?

No one, your password should be kept private. No one from IRT, Admissions and Records or any other office at Sac State will ask for your password.

If you think your password has been stolen or used without your consent, report the incident to abouse@csus.edu and contact the IRT Service Desk to change your password immediately.

Additional Resources:

If I am using a lab computer and I log out, will my personal or account information be saved?

As long as you successfully log off of the lab computer or loaned laptop your information will not be saved. However, if you simply exit a web browser then your information might be accessible to the next user. Always make sure you log off, restart or turn off any lab or loaned computer you use.

What is Phishing?

Phishing websites are usually disguised as legitimate websites or businesses that are seeking personal information like usernames and passwords, financial information, or other personal information. Phishing can lead to personal information being stolen, including saved passwords and bank account information. For tips on how to avoid phishing attempts click About Phishing below.

If you believe that you are a victim of phishing please contact the IRT Service Desk at 916.278.7337.

Additional Resources: