Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.tools -> Re: Need to implement password composition restrictions - 28003 issue with VERIFY_FUNCTION

Re: Need to implement password composition restrictions - 28003 issue with VERIFY_FUNCTION

From: Michael Dodd <doddme_at_mindspring.com>
Date: Sun, 03 Jun 2001 12:54:32 -0500
Message-ID: <8aukht0s62iti63ohde3k6o81q6l9scuea@4ax.com> 






On 03 Jun 2001 00:46:54 GMT, "wayne" <no_at_email.please.com> wrote:



>> We receive ORA-28003 messages when users try to

>>

>> ALTER USER self IDENTIFIED BY password;

>>

>> After implementing VERIFY_FUNCTION in the profile in 8.1.6. and above.

>

>According to the docs:

>Cause: The new password did not meet the necessary complexity specifications

>and the PASSWORD_VERIFY_FUNCTION failed.

>

>So I would start by debugging your verify function.

>

>




We have not altered the function from the one provided from Oracle.
I have searched MetaLink and though the error message does say what
you found, that is not the true cause.  What is happening is that the
user can not use ALTER USER username IDENTIFIED BY password.  Oracle
is trying to move away from that due to security concerns.



Still, anyone out there with a solution.  We need to meet the audit
point.
Received on Sun Jun 03 2001 - 12:54:32 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US