Division of Finance • IT Services Portal

• Your "PennKey" is a combination of your PennKey username and password.
• Report compromised PennKeys immediately to Information Security at security@isc.upenn.edu or by phone at 215-898-2172.
• Consider occasionally changing your PennKey password.
• Never use the same password for multiple systems. Avoid using similar or sequentially numbered passwords, i.e: P@ass2020! and P@ss2021!.
• User a password manager app in your web browser and smartphone to store all of your passwords in one place for easy reference.

REMEMBER: neither ITS nor ISC nor anyone for that matter will ever ask for your PennKey information. Only you will ever know your PennKey information. Never, under any circumstances, share your PennKey information with anyone.

Choose unique complex passwords only. You password must meet the following criteria, with longer passwords requiring less complexity:

• 20 characters: any combination of keyboard characters
• 16-19 characters: must contain upper and lower case letters
• 12-15 characters: must contain upper and lower case letters, and numbers
• 8-11 characters: must contain upper and lower case letters, and numbers, and symbols
  • Upper case letters (A, B, C...)
  • Lower case lettes (a, b, c...)
  • Numbers (0, 1, 2...)
  • Symbols (!, @, #...)

You can change your PennKey password at any time at: https://weblogin.pennkey.upenn.edu/changepassword.

Download the free LastPass password manager app for your web browser and smartphone. To learn more about using LastPass, visit the Penn-LastPass page at: https://www.isc.upenn.edu/how-to/lastpass.