Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here


Password expiration

Password expiration

Password expiration

We have an application running on our server that connects to our Oracle 12c database.
I found today that the account the application uses to connect to the database was locked. When I looked up the account I believe it had the word TIMED on it relating to the expiration settings?
I am new to working on this so and lost my screen shot to show what it is I had found.

I unlocked the account but believe it should be set to non expiring.
We have four servers we are preparing to put into production replacing our old servers. All servers should be configured the same and only one had the account locked, which happens to be the new production server. The lower environments did not have an issue though that may be because they have been in use as we are doing our testing prior to switching to the new system.

What steps do I need to take to determine what the expiration setting is for the accounts so that I can compare between servers to see if non-expiring is what the other servers are set to for this ID?

I have been reading up but it seems every piece leads to another puzzle piece to research which leads to another, etc. If I were more familiar with how the system works it would not be so bad but everything refers to something else I have to look up until it becomes information overload while trying to make one quick fix.
We rarely have anything to do with the database directly except for setting it up initially.


At my age I still learn something new every day, but I forget two others.

RE: Password expiration

The password expiration is managed by profiles.
A new database comes with a profile named DEFAULT, which is assigned to all users. In this profile the password life time is set.
The quick fix is to change the DEFAULT profile (note that this will affect all database users that have this profile assigned), the more secure way is to create a new profile and assign it to your application user. Most databases I've seen use the quick fix, because this mimics the behavior of prior versions.

To compare your servers I'd start by finding out what profile is assigned to your user and then have a look at the profile (with a privileged account):


SELECT profile FROM dba_users WHERE username = 'YOURUSER';
SELECT * FROM dba_profiles WHERE profile = 'RESULT_FROM_FIRST_QUERY'; 

This is the quick fix:


ALTER PROFILE default LIMIT password_life_time UNLIMITED; 

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close