There is a better way. Use a password manager (such as 1Password or LastPass.) You only ever have to remember the master password to unlock your password manager, and then each website will get its own randomly-generated password, and you don't have to remember them. When a website prompts you for your password, you type a keystroke and voilá, you're logged in. On my Mac for 1Password, that keystroke is Cmd-\.

-mvitale

Thanks, I did use one a few years back but it wasn't perfected, perhaps it time for another look.

Had the same issue a few days ago. Was maddening. I thought it was my browser, but as others have noted, nothing worked. I ended up going the "forgot my password" route and that worked.

Exact same problem here, and this has nothing to do with any sort of "phishing" scam. I navigate directly to marriottrewards.com, and upon login, I'm forced to change my password. Using safari, my email address (i.e. username) is pre-filled for me, but when I change my password on that page and click "submit", I get some stupid redirect error to some random "http://auth-app:9000/aries-auth/logout" "url". So I try chrome and firefox, but this time the email field is NOT pre-filled AND it's not editable. Went the "change password" route as noted above, and this worked for me.

For weeks now your "new and improved" site has caused me nothing but headaches. You have a SSO system that has no clue how to perform authenticated redirects, and therefore I'm asked to enter my credentials at least 3 times during every session I have on your site.

Nice going Marriott.

Ditto for me.

I am having the same problem. Surprised they have not fixed it by now. When logging in, the system asks me to change the password, but then I am unable to enter the email, and if I fill in the rest of the fields and submit it errors out.

So I am effectively locked out of my account.

Try going to Marriott.com, hover mouse over SignIn and select the Forgot Password option. Follow that through and you should be able to change the password.

I have the same issue, though none of the reset options seem to be working. Customer service acknowledged there is a new known issue, but couldn�t help. Twitter DMs got me a call from an IT person who troubleshooted and narrowed the issue, but had to send to another IT group for further support. If anyone gets an update please post it. Thanks!

On the bright side, it appears passwords are finally case sensitive. There also appears to be a weak form of multi-factor, sending a code to your email (not a second factor) or phone (sort of a second factor).