Oracle Password Complexity settings (Oracle_Password_Complexity)

Oracle Password Complexity settings (Oracle_Password_Complexity) 1. Oracle_Password_Complexity: SQL> alter system set resource_limit = true; SQL >@$ ORACLE_HOME/RDBMS/ADMIN/utlpwdmg. SQL → [verify_function | feature] SQL> alter profile default limit password_verify_function verify_function; # cancel Oracle Password Complexity check: SQL> alter profile default limit password_verify_function null; SQL> SELECT profile, resource_type, resourc E_name, limit FROM dba_profiles WHERE resource_type = 'Password' AND profile = 'default'; 1. FAILED_LOGIN_ATTEMPTS: the user is locked after the logon attempt fails for n times. 2. PASSWORD_LOCK_TIME: the number of failed logon attempts reaches the specified number of times. The user lock duration, in the unit of "Day. 3. PASSWORD_LIFE_TIME: the lifecycle of the user password. 4. PASSWORD_GRACE_TIME: indicates the number of days that a user's password can be used after its life cycle is exceeded. A prompt indicating that the password is about to expire is displayed during the logon period. 5. PASSWORD_REUSE_TIME: specifies the number of days before the password cannot be reused. 6. PASSWORD_REUSE_MAX: the number of times that the password must be changed before it reaches the time specified by PASSWORD_REUSE_TIME. For example, if PASSWORD_REUSE_TIME = 30 and PASSWORD_REUSE_MAX = 10, you can reuse the password after 30 days. The password must be changed more than 10 times. 7. PASSWORD_VERIFY_FUNCTION: Oracle allows passing complex PL/SQL password verification scripts as parameters to PASSWORD_VERIFY_FUNCTION. In addition, it provides a default script, but users can create their own verification rules or use third-party software for verification. 8. password Verify Function: When you create a password verify function for verifying the user password, this function can verify the following password characteristics: 1.The minimum number of characters for the password. 2.The characters that the password must contain, such as when a password shoshould contain a specific number of numeric, alphabetic or special characters. 3. whether or not the password can be the same as the username. whether or not the new password can be similar to the previous password. oracle 11g Database Password case-sensitive settings → SEC_CASE_SENSITIVE_LOGON = TRUE.