Oracle is developed in such a way that it automatically generates a number of schemas which have default passwords. These users are usually locked but it is important to change to non-default passwords in the event that they are unlocked by mistake (Oracle-base). Common users have the privilege to change their passwords for them to match their username. These scenarios pose a security risk to the information stored in a database. When one creates an account Oracle, a default password policy is allocated to the user. The default password policy involves a number of instructions:
The user account password expires in 180 days.
After 7 days of password expiration, the user account is locked.
If 10 failed login attempts are recorded, the account is locked for a day.
This password policy is designed to ensure the security of the database. However, a user may find that the policy is not secure enough and therefore decides to change it. To change the password policy, a number of steps are followed:
Delegate your assignment to our experts and they will do the rest.
The user should log into EM Express using a user account bearing rights to edit the existing default password policy.
Once the user has logged in, he should select the tab ‘Profiles’ which is found on the security menu.
Selecting Profiles is followed by naming it default and then selecting Alter Profile from the Actions menu. Selecting Alter Profile takes the user to the Alter Profile Wizard.
Click the right arrow button to open the password page.
The password page provides values which the user can change accordingly.
After changing the values, click OK to save the changes (Oracle, 2017).
References
Oracle, (2017). Database 2 Day DBA. Oracle Help Centre. Retrieved from: https://docs-oracle.com/database/121/ADMQS/GUID-8261A10B-8983-4FA5-BE23-B60FC8A2CF1A.htm#ADMQS12045
Oracle-Base. Basic Security Measures for Oracle. Oracle-Base. Retrieved from: https://oracle-base.com/articles/misc/basic-security-measures-for-oracle
