Password Change Utility

[sjwales]

We're looking at a way to do password change management and while we're talking about developing something I thought I'd ask if anyone knows of any downloadable tools to do what I'm about to suggest.

We have users logging in to the database through a third party query tool. In order to do that, I create them a user account with some default password (whatever tickles my fancy that week). It's almost impossible for the users to change this default password though.

What I'm looking for is some way to allow users to change their passwords. Ideally it'd be some web based tool where they type in existing username and password and then are prompted for the new password.

Another option we've been asked to consider is have a site administrator have "ALTER USER" privilege so that he can reset lost passwords without the users having to come through the help desk to the DBA team. This would probably have to be setup so that they are asked for username, new password but if they enter any restricted usernames (sys, system, certain definable schema owners, outln, dbsnmp etc) then it rejects them.

Anyone ever seen a tool like this one before?

If not, we'll just throw the project to our developers

Thanks
Steve

stephen.wales@riotinto.com

 

[sem]

1. If your third-party tool is clever enough, it must allow changing expired passwords. Thus you may set default password and force user to change it immediately.
2. I suppose that you may email lost passwords. You may create a table connecting Oracle usernames and email addresses and do it with UTL_SMTP package from the same database.
3. Do you mean ALTER ANY USER? If so, I suppose it to be too dangerous, because in this case you loose an option to grant DBA or any other "restricted" role to ordinary users.

Regards, Dima