RE: Max Password length

From: Yavor Ivanov <>
Date: Mon, 9 Mar 2009 18:53:27 +0200
Message-ID: <BD17E2E69E17C64A9684C940EB580E030111A7AED335_at_stemodc1.stemo.local>

Of course, if 30 bytes is not enough, you can use external authentication. There must be some directory server which allows more.


From: [] On Behalf Of Charles Schultz Sent: Monday, March 09, 2009 6:02 PM
Subject: Re: Max Password length

Well, blow me down, it is 30 bytes (as opposed to characters). =)

BANUPGRD_SQL > select dump('abcdefghijklmnopqrstuvwxyzabcd') from dual;


Typ=96 Len=30: 97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,97,98,99,100

BANUPGRD_SQL > drop user test;
drop user test

ERROR at line 1:
ORA-01918: user 'TEST' does not exist

BANUPGRD_SQL > create user test identified by abcdefghijklmnopqrstuvwxyzabcß; create user test identified by abcdefghijklmnopqrstuvwxyzabcß


ERROR at line 1:
ORA-00972: identifier is too long

BANUPGRD_SQL > select dump('abcdefghijklmnopqrstuvwxyzabcß') from dual;


Typ=96 Len=31: 97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,97,98,99,195,159

On Mon, Mar 9, 2009 at 10:54 AM, Rich Jesse <<>> wrote: Hi Ruben,

> What is the maximum password length in oracle 10g
The 10gR1 docs for the CREATE USER statement say:

Passwords must follow the rules described in the section "Schema Object Naming Rules ", unless you are using the Oracle Database password complexity verification routine.

And the Schema Object Naming Rules say:

Names must be from 1 to 30 bytes long

As always, it's best to verify this information in your databases by testing.

HTH! GL! Rich


Charles Schultz
Sent from: Champaign Illinois United States.

Received on Mon Mar 09 2009 - 11:53:27 CDT

Original text of this message