Enforcing password rules in oracle database

From: Mahesh G <gmaheshji_at_gmail.com>
Date: Fri, 18 Mar 2011 14:00:34 +0530
Message-ID: <AANLkTinwGHJ5zV039KmAvxzhwYEMDLjCesrWDKO=R784_at_mail.gmail.com>

Hi all,

We have one requirement to enforce below mentioned password rules for all newly created user accounts in our environment.

All passwords must have at least 7 characters in length
All Logins will require the use of a password
Passwords must not match the username
Unsuccessful login attempts must be audited
Password duration <= 90 days
Failed logins limit = 6

Oracle built-in feature, setting Default profile and calling verify_function function ($ORACLE_HOME/rdbms/admin/utlpwdmg.sql ) doesnt serve my purpose. Because 2 rule will be violated for those users who use external password option. My env is combination of 9i, 10g & 11g version databases.

Can you recommend / suggest any best way to implement the above rules ? It would be great help.

Regards,
- Mahesh

--
http://www.freelists.org/webpage/oracle-l

Received on Fri Mar 18 2011 - 03:30:34 CDT

This message: [ Message body ]
Next message: Marko Sutic: "Re: Replacement for aged SunFire v490 servers"
Previous message: John Hallas: "This is a test - please ignore"
Next in thread: John Hallas: "RE: Enforcing password rules in oracle database"
Reply: John Hallas: "RE: Enforcing password rules in oracle database"
Reply: Dunbar, Norman (Capgemini): "RE: Enforcing password rules in oracle database"
Reply: Powell, Mark: "RE: Enforcing password rules in oracle database"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message