Home >Database >Oracle >How to set user password in oracle

How to set user password in oracle

PHPz
PHPzOriginal
2023-04-17 16:36:382077browse

In Oracle database, in order to protect sensitive data and restrict unauthorized access, we need to set the password of the database user. Setting passwords is one of the important responsibilities of Oracle database administrators because security is one of the core of database management. In this article, we will learn how to set password for users in Oracle database.

  1. Select user

First, we need to select the user for whom we want to set a password. You can use the following command to view the list of all users:

SELECT username FROM dba_users;

where dba_users is the system table used to manage all users. Select the user whose password you want to set and write down the username.

  1. Set Password

Next, use the following command to set a password for the user:

ALTER USER <用户名> IDENTIFIED BY <密码>;

For example, if you want to set the password for user Tom to " password123", we can run the following command:

ALTER USER Tom IDENTIFIED BY password123;

Please note that the password must comply with Oracle's password complexity rules. This includes:

  • Password must be at least 12 characters long
  • Password must contain at least one uppercase letter
  • Password must contain at least one lowercase letter
  • Password must contain at least one number
  • Password must contain at least one non-alphanumeric character such as #, $, !

If the password does not comply with these rules, an error message will be displayed. For example, if we try to set a non-compliant password "tom123" for user Tom, we will receive the following error message:

ORA-28003: password verification for the specified password failed
  1. Password Complexity Configuration

If you want to configure Oracle's password complexity rules to suit your company's needs, you can use the following command:

ALTER SYSTEM SET "PASSWORD_COMPLEXITY_CHECK"=ON;

This will enable the "Password Complexity Check" feature and force users to set complex passwords. You can pass different parameters in this command to modify the password complexity. Other parameters include:

  • LENGTH_MINIMUM: Set the minimum length of the password
  • UPPERCASE_REQUIRED: Specify whether uppercase letters are required
  • LOWERCASE_REQUIRED: Specify whether lowercase letters are required
  • DIGIT_REQUIRED: Specify whether numbers are required
  • SPECIAL_REQUIRED: Specify whether special characters are required
  • SPECIAL_ALLOWED: Specify the special characters allowed

For example, the following command will set The minimum password length is 10 characters and requires at least one uppercase letter, one lowercase letter and one number:

ALTER SYSTEM SET "PASSWORD_COMPLEXITY_CHECK"=ON 
    COMMENT 'Must be at least 10 characters long and contain at least one upper case letter, one lower case letter and one number'
    LENGTH_MINIMUM 10 UPPERCASE_REQUIRED LOWERCASE_REQUIRED DIGIT_REQUIRED;
  1. Password Expiration Policy

In addition to setting a complex password , we can also configure the password expiration policy. This can help ensure security as it forces users to change their passwords regularly. You can set the password expiration time for a user using the following command:

ALTER PROFILE <profile_name> LIMIT PASSWORD_LIFE_TIME <days>;

For example, if we want to define a profile called "four_month_expiration" where the user's password will expire every four months, we can Use the following command:

CREATE PROFILE four_month_expiration LIMIT PASSWORD_LIFE_TIME 120;

After creating the profile, we can assign it to the user. We can assign the "four_month_expiration" profile to user Tom using the following command:

ALTER USER Tom PROFILE four_month_expiration;

If you want to make the profile effective immediately, you can force the user to change their password. You can force all users to change their passwords using the following command:

ALTER USER <用户名> PASSWORD EXPIRE;

For example, the following command will force Tom user to change his password:

ALTER USER Tom PASSWORD EXPIRE;

Summary

Setting user passwords is an Oracle database management A critical task for database administrators because security is one of the core aspects of database management. In this article, we covered how to select a user and set a password, as well as how to configure password complexity and password expiration policies in an Oracle database. These actions can help protect sensitive data and limit unauthorized access.

The above is the detailed content of How to set user password in oracle. For more information, please follow other related articles on the PHP Chinese website!

Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn