Presentation is loading. Please wait.

Presentation is loading. Please wait.

14 Copyright © Oracle Corporation, 2001. All rights reserved. Managing Password Security and Resources.

Published byDortha Clarke Modified over 9 years ago

Similar presentations

Presentation on theme: "14 Copyright © Oracle Corporation, 2001. All rights reserved. Managing Password Security and Resources."— Presentation transcript:

1 14 Copyright © Oracle Corporation, 2001. All rights reserved. Managing Password Security and Resources

2 14-2 Copyright © Oracle Corporation, 2001. All rights reserved. Objectives After completing this lesson, you should be able to do the following: Manage passwords using profiles Administer profiles Control use of resources using profiles Obtain information about profiles, password management, and resources

3 14-3 Copyright © Oracle Corporation, 2001. All rights reserved. Profiles A profile is a named set of password and resource limits. Profiles are assigned to users by the CREATE USER or ALTER USER command. Profiles can be enabled or disabled. Profiles can relate to the DEFAULT profile.

4 14-4 Copyright © Oracle Corporation, 2001. All rights reserved.

5 14-5 Copyright © Oracle Corporation, 2001. All rights reserved. User Password expiration and aging Password verification Password history Account locking Setting up profiles Password Management

6 14-6 Copyright © Oracle Corporation, 2001. All rights reserved. Set up password management by using profiles and assigning them to users. Lock, unlock, and expire accounts using the CREATE USER or ALTER USER command. Password limits are always enforced. To enable password management, run the utlpwdmg.sql script as the user SYS. Enabling Password Management

7 14-7 Copyright © Oracle Corporation, 2001. All rights reserved. Password Account Locking Parameter Number of failed login attempts before lockout of the account Number of days the account is locked after the specified number of failed login attempts FAILED_LOGIN_ATTEMPTS PASSWORD_LOCK_TIME Description

8 14-8 Copyright © Oracle Corporation, 2001. All rights reserved. Parameter Lifetime of the password in days after which the password expires Grace period in days for changing the password after the first successful login after the password has expired PASSWORD_LIFE_TIME PASSWORD_GRACE_TIME Parameter Password Expiration and Aging

9 14-9 Copyright © Oracle Corporation, 2001. All rights reserved. Password History Parameter Number of days before a password can be reused Maximum number of times a password can be reused PASSWORD_REUSE_TIME PASSWORD_REUSE_MAX Description

10 14-10 Copyright © Oracle Corporation, 2001. All rights reserved. Password Verification Parameter PL/SQL function that performs a password complexity check before a password is assigned PASSWORD_VERIFY_FUNCTION Description

11 14-11 Copyright © Oracle Corporation, 2001. All rights reserved. User-Provided Password Function This function must be created in the SYS schema and must have the following specification: function_name( userid_parameter IN VARCHAR2(30), password_parameter IN VARCHAR2(30), old_password_parameter IN VARCHAR2(30)) RETURN BOOLEAN

12 14-12 Copyright © Oracle Corporation, 2001. All rights reserved. Password Verification Function VERIFY_FUNCTION Minimum length is four characters. Password should not be equal to username. Password should have at least one alphabetic, one numeric, and one special character. Password should differ from the previous password by at least three letters.

13 14-13 Copyright © Oracle Corporation, 2001. All rights reserved. CREATE PROFILE grace_5 LIMIT FAILED_LOGIN_ATTEMPTS 3 PASSWORD_LOCK_TIME UNLIMITED PASSWORD_LIFE_TIME 30 PASSWORD_REUSE_TIME 30 PASSWORD_VERIFY_FUNCTION verify_function PASSWORD_GRACE_TIME 5; Creating a Profile: Password Settings

14 14-14 Copyright © Oracle Corporation, 2001. All rights reserved.

15 14-15 Copyright © Oracle Corporation, 2001. All rights reserved.

16 14-16 Copyright © Oracle Corporation, 2001. All rights reserved.

17 14-17 Copyright © Oracle Corporation, 2001. All rights reserved. ALTER PROFILE default LIMIT FAILED_LOGIN_ATTEMPTS 3 PASSWORD_LIFE_TIME 60 PASSWORD_GRACE_TIME 10; Altering a Profile: Password Setting Use ALTER PROFILE to change password limits

18 14-18 Copyright © Oracle Corporation, 2001. All rights reserved.

19 14-19 Copyright © Oracle Corporation, 2001. All rights reserved. DROP PROFILE developer_prof; DROP PROFILE developer_prof CASCADE; Dropping a Profile: Password Setting Drop the profile using DROP PROFILE command. DEFAULT profile cannot be dropped. CASCADE revokes the profile from user to whom assigned

20 14-20 Copyright © Oracle Corporation, 2001. All rights reserved.

21 14-21 Copyright © Oracle Corporation, 2001. All rights reserved. Summary In this lesson, you should have learned how to: Administer passwords Administer profiles

22 14-22 Copyright © Oracle Corporation, 2001. All rights reserved. Practice 14 Overview This practice covers the following topics: Enabling password management Defining profiles and assigning to users Disabling password management

23 14-23 Copyright © Oracle Corporation, 2001. All rights reserved.

24 14-24 Copyright © Oracle Corporation, 2001. All rights reserved.

Download ppt "14 Copyright © Oracle Corporation, 2001. All rights reserved. Managing Password Security and Resources."

Similar presentations

Password Management for Oracle8 Ari Kaplan Independent Consultant.

Password Management for Oracle8 Ari Kaplan Independent Consultant.
Oracle 10g Database Administrator: Implementation and Administration

Oracle 10g Database Administrator: Implementation and Administration
Securing Oracle Databases CSS-DSG JTrumbo. Audit Recommendations -Make sure databases are current with patches. -Ensure all current default accounts &

Securing Oracle Databases CSS-DSG JTrumbo. Audit Recommendations -Make sure databases are current with patches. -Ensure all current default accounts &
Copyright Ó Oracle Corporation, 1999. All rights reserved. 2222 Sharing Objects and Code.

Copyright Ó Oracle Corporation, All rights reserved Sharing Objects and Code.
Module 4: Implementing User, Group, and Computer Accounts

Module 4: Implementing User, Group, and Computer Accounts
OFFICE OF THE ACCOUNTANT GENERAL (A&E), KERALA Management of Security in VLC Software.

OFFICE OF THE ACCOUNTANT GENERAL (A&E), KERALA Management of Security in VLC Software.
System Administration Accounts privileges, users and roles

System Administration Accounts privileges, users and roles
Oracle8 - The Complete Reference. Koch a& Loney1 By What Authority? Presented by Victor Matos.

Oracle8 - The Complete Reference. Koch a& Loney1 By What Authority? Presented by Victor Matos.
About physical design After you have provided your scripts Understand the problems Present a template that can be used to report on the physical design.

About physical design After you have provided your scripts Understand the problems Present a template that can be used to report on the physical design.
Securing the Oracle Database

Securing the Oracle Database
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Administering User Security

Administering User Security
Copyright  Oracle Corporation, 1998. All rights reserved. 4 Creating Functions.

Copyright  Oracle Corporation, All rights reserved. 4 Creating Functions.
9 Copyright © Oracle Corporation, 2001. All rights reserved. Oracle Recovery Manager Overview and Configuration.

9 Copyright © Oracle Corporation, All rights reserved. Oracle Recovery Manager Overview and Configuration.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Best Practices for Securing Oracle EBS R12

Best Practices for Securing Oracle EBS R12
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security.

11 Copyright © 2004, Oracle. All rights reserved. Oracle Database Security.
By Lecturer / Aisha Dawood 1.  Administering Users  Create and manage database user accounts.  Create and manage roles.  Grant and revoke privileges.

By Lecturer / Aisha Dawood 1.  Administering Users  Create and manage database user accounts.  Create and manage roles.  Grant and revoke privileges.

Similar presentations

Ads by Google