Re: Dormant database user accounts

From: Hans Forbrich <fuzzy.graybeard_at_gmail.com>
Date: Mon, 16 Mar 2015 08:09:40 -0600
Message-ID: <5506E424.3000300_at_gmail.com>

One additional thing you can consider is an export by user immediately before removing.

/Hans

On 16/03/2015 7:35 AM, Leroy Kemnitz wrote:
>
> Thanks for all of the good input on this.
>
> To answer some of the questions � Yes, I am auditing user logins. So
> I am querying the audit views to find the user accounts that were used
> in the last year and half, then comparing them to the actual list of
> users setup in the database. Also, these accounts are the human
> accounts � they don�t own any objects. My application owner logins
> are separate.
>
> So it does sound like 90 days is the avg time to expire a password.
> The user is then sent an email alerting them to the change. Then
> after about 6 months of inactivity, the locked accounts are deleted.
>
> That completely makes sense to me��.now to convince the security officier.
>
> LeRoy
>

--
http://www.freelists.org/webpage/oracle-l

Received on Mon Mar 16 2015 - 15:09:40 CET

This message: [ Message body ]
Next message: Ray Stell: "Re: RMAN backup validate"
Previous message: Niall Litchfield: "Re: Dormant database user accounts"
In reply to: Leroy Kemnitz: "RE: Dormant database user accounts"
Next in thread: Tim Gorman: "Re: Dormant database user accounts"
Reply: Tim Gorman: "Re: Dormant database user accounts"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message