Typically everyone at MIT needs to reset their Kerberos password by end of July each year.
For those resetting their Kerberos password from off-campus, see this article from MIT IS&T:
Remote Domain Computers and Password ChangesThe Change your password while on the VPN section should be useful.
After the password has been reset make note of steps 3 and 4; step 3 it says to Lock your computer by either clicking "Windows+L" or "Ctrl-Alt-Delete" and selecting "Lock" and step 4 Wait 10 minutes for your computer to establish a connection to the domain and sync the new password.
How to Obtain Global Protect VPN
I forgot my password, can I have it reset?
If you are not being prompted to reset your password then you probably had already set it in the past year and you are ok. If you would like to reset your password, even without being prompted to do so - go to https://ca.mit.edu:444/ca/cpw Then run Cert-Aid.
All MIT community members should renew their personal certificates on every device by July 30, 2025, to keep access to web applications that require certificate authentication.
All certificates obtained within the past year will expire on July 30, 2025. Please renew your certificates on all devices before this date to avoid disruptions. Renewal is not automatic and requires a few steps:
1. Before Renewing:
- You will be prompted to change your password if it’s over a year old. Learn about strong passwords.
- If your Windows computer is on the MIT domain and you’re off campus, read this article to ensure you can log in after a password change.
- Have your Duo device handy for authentication.
- On Mac or Windows, update your browser and run the latest CertAid app. (if your last password change was within one year you will not need to change it) Supported browsers: Safari, Edge, Chrome, Firefox.
- For iPhone/iPad: See iOS instructions.
- For Android: See Android instructions.
- Remember: You’ll need a certificate for each browser on each device you use. More info on MIT Certificates.
- Delete expired certificates to avoid issues accessing secure sites. CertAid can help with this. Learn how to delete expired certificates.
- Important for S/MIME encrypted email users: Do not delete expired certificates used to sign or receive encrypted email. See how to export or back up certificates.
Sincerely,
Kyle Filipe
Senior Director, IT Support Services
