MIDAS (Monarch Identification and Authorization System) is ODU's log-in and password management system. Use your MIDAS ID and password to log in to most University applications and services, such as email, Canvas, myODU, Leo Online, Banner and many other important resources.
When you create your MIDAS ID and password, you'll also set up two-factor authentication and create a security profile that will allow you to reset your password online if you forget it. Once your MIDAS account is created, you should only need to log in to MIDAS to change your password or security profile.
Every MIDAS user must read and accept the Acceptable Usage Policy and take annual online training.
You can request additional online ODU services or accounts through MIDAS. Learn more.
Video: An Introduction to the MIDAS System
Important Security Notice: If we detect that your MIDAS account has been compromised, we will attempt to contact you by phone and email. If we reach you, we will advise you to reset your MIDAS password. If we cannot reach you right away, we will administratively reset your MIDAS account. You'll need to either contact the ITS Help Desk or use the MIDAS password reset (instructions below).
Monarch-Key Web Login
Monarch-Key Web Login lets you access ODU's essential academic and professional services with your MIDAS ID and password. Once you have authenticated to Monarch-Key, you can navigate from one service to another without having to log in again.
For security reasons, Monarch-Key sessions will time out after one hour; if you launch a web application more than an hour after the initial authentication, you will be prompted to log in to the system again.
Exit Browser to Log Out
Logging out of a web-authenticated service is not guaranteed until the user has properly exited the browser window. When all Monarch-Key Web Login sessions are completed the browser must be 'Closed' (Windows) or 'Quit' (Apple) to ensure the user is logged out of every service.
Because compromised MIDAS credentials pose a risk to protected data and critical services, ODU requires all students, faculty and staff to log in to University services using two-factor authentication. Learn more here.
Monarch-Key Login screen: This page will appear when accessing most ODU online services.
Go to midas.odu.edu and click "Need an account?" Enter your personal information. (Your UIN is sent to you when you are admitted to Old Dominion University. If you do not know or cannot find your UIN, you can use the "Forgot UIN?" link on the MIDAS homepage.)
- Acceptable Usage Policy
Read the entire Acceptable Usage Policy (AUP). After reading the AUP select the "Accept" radio button and click "Submit".
You are required to take one or more training courses during account setup. The number of courses depends on your role within the university (faculty, staff or student). Please read carefully, click the "next" button to go to the next page. On the last page, click the "Accept" button.
- Security Profile
The Security Profile is necessary to protect your privacy and the security of the network if you should forget your password. The setup consists of 2 steps:
- Step 1: Choose a security token method. You have to choose at least one of them, but you can also choose multiple or all methods. Click the "Continue" button.
- Step 2: Choose a verification method. You have 2 choices: a text-based method or a color-based method. Move your mouse pointer over the choice names to see examples. Click the "Continue" button to advance to the next step. Depending on what you chose in step 2, the last step for the security profile is to complete either the "Questions and Answers" profile OR the "Color Grid Pattern" profile.
- Two-Factor Authentication
Follow the on-screen prompts to download Duo Mobile to your mobile device and set up two-factor authentication. (If you have a smartphone with a phone number outside the Unitied States, see the "International" guide below.)
The final step in your account setup is setting your password. The password must follow certain rules to be valid to ensure security. The rules are listed on the right-hand side of your screen. You will see green check marks that indicate if all the password rules are met. Click the "Change Password" button.
Your account is now set up. On the right of the page a message will appear that displays your new MIDAS ID. Please make sure to write down your MIDAS ID!
Why does my password have to be so complex?
Monarch-Key allows access to a wide range of web services using MIDAS credentials, including MyODU portal, email, and dozens of other ODU services.
The ability to access a wide range of service with a single account provides many benefits including:
- Reduction in the number of accounts/passwords users must remember
- Greater security of personal and private information
- Easier access to ODU resources via systems integration
In turn, the MIDAS password rules and complexity must meet the requirements of many systems. ODU's password practices (MIDAS password length, complexity, and rotation frequency) all blend together to adhere to industry standards and meet the requirements for identity assurance certification.
ODU takes the security and privacy of our student's information seriously; in order to have a less complex password that is still secure, the length of the password would have to increase or the frequency of change would have to be made shorter. Therefore, we strive to balance these aspects and ultimately deliver a secure yet user friendly computing environment.
MIDAS passwords must be changed once every six months.
You will receive email notifications beginning a couple of weeks before your MIDAS password is set to expire. You'll also see reminders on all Monarch-Key Web Login pages.
To change your MIDAS password:
- Log in to the MIDAS Homepage with your MIDAS ID and current password.
- From the home screen, click on 'My Account' at the top, and select 'Account Settings.'
- Under the 'Authentication' section on the left, select 'Change MIDAS Password.'
- Enter your new password (Note: Your new password must conform to all rules listed on right side of the Change Password page.) After you have selected your new password and re-typed it for verification, all of the check marks on the right will be green. Click the 'Submit' button.
- Log out of MIDAS and log back in with the new password to make sure everything works.
You will be able to access most services like myODU, email, Canvas and campus workstations with your new password almost immediately. Some services can take a little longer (up to 30 minutes) to pick up the password change. A few things to note:
- Each device you use with your ODU account will need to be updated independently (desktop, laptop, phone/tablet, etc.)
- Any service that has the password stored will need to be updated. This includes browsers with saved passwords, Wi-Fi, Office products (like Outlook, Teams, OneDrive), Zoom, VPN, etc.
- For a laptop/desktop on the wired network or on the ODU VPN, we recommend logging out of your computer after changing your password. When you log back in, most applications will re-authenticate, prompting for the new password right away. Otherwise, each application will ask you to enter your new password as it checks in -- within minutes or hours, depending on the application. The experience varies slightly on the ODU wired network/VPN vs. wireless/off campus networks, and on Windows vs. Mac devices.
Guidance for a MIDAS Password change:
Passwords remain the first line of defense in information security and are a key component in ODU's security plan. Because your MIDAS ID and password provide access to so many resources - including critical or sensitive data - we follow the recommendations of the National Institute for Standards and Technology (NIST) regarding the length, complexity, and rotation period for our passwords.
It can seem complicated, but there are a couple of things that might make MIDAS password changes a little easier on you:
- To minimize disruptions, make your password changes at the end of a workday. Passwords can take up to 30 minutes to sync across all ODU services, and each service can ask for the new password as it syncs. You'll have fewer interruptions if you wait until the end of the day.
- After changing your password, log out and restart your primary ODU workstation. When you log back in (the next morning, if you followed the advice above), make sure to use your new password. If you don't restart, most ODU applications will ask you to enter your new password.
After you change your password, you can expect each ODU service on each device you use to ask you to re-authenticate. Be prepared to enter your new password (and update any saved passwords) for:
- ODU services in standalone apps or clients (Office 365, Zoom, VPN, etc.)
- Browser-based ODU services (Outlook Web Access, Canvas, etc.)
- ODU Wi-Fi (eduroam, MonarchODU)
If you do not remember your MIDAS password, please follow these steps:
- Visit the MIDAS Homepage.
- Click the link 'Forgot password?' under the 'Log In' button.
- Enter your MIDAS ID and UIN
- Enter required information:
- If you have set up a MIDAS PIN, please enter it.
- If you have selected a Token Method, click 'Request New Token'. Once you receive your token, enter it into the 'Enter Token Value' box.
- Click 'Submit.'
- Answer the Security Profile Questions or Color Grid.
- Upon successfully answering the questions, create a new password.
If you cannot successfully create a new password using your security profile, ITS will reset your MIDAS password. You will need to follow one of the following procedures:
- Come in person to the ITS Help Desk, present a picture ID and request to have your MIDAS password reset.
- If you are out of the area, you must fax (or email as an attachment) a copy of a picture ID to the Help Desk. Please include the following:
- Your full name
- Your UIN
- Your birth date
- A phone number
Why do I have to provide a picture ID in order to receive a new password?
If the online lost/forgotten password service cannot be used, the ITS Help Desk will need to validate your identity with a picture ID. This ensures that we don't give your personal information to anyone other than you.