Print 

Previous Topic

Next Topic

About Password Rules

A single set of password rules is applied to all companies and users. The password rules are set to match Oracle's security standards for Internet applications.

General Password Rules

The following are the general rules for passwords:

  • The password must have a minimum of eight characters.
  • The password must have at least one lowercase character.
  • The password must have at least one uppercase character.
  • The password must have at least one numeric character.
  • The password may contain one or more special characters.

    The only special characters that are accepted are:

    • Minus sign (-)
    • Underscore (_)
    • Colon (:)
    • Single quotation mark (')
    • Asterisk (*)
    • Exclamation point (!)
    • Pound symbol ()
    • Dollar sign ($)
    • At sign (@)
    • Period (.)
    • Comma (,)
    • Slash (/)
    • Backslash (\)
  • The password must not contain a word in a standard dictionary.

Password Expiry Rules

When a user's password expires, the user cannot access Oracle Social CRM Applications. The following are the rules for password expiration:

  • A user must change the password at least once every 60 days.
  • If the user does not change the password before the expiry time, the password expires, and the user is required to change the password on the next login to Oracle Social CRM Applications.

Unique Password Rule

When a user changes a password, the new password must be different from the old password. If a user enters a new password that is the same as the old password, the user cannot change the password, and receives an error message indicating that the new password must be different from the old password.


Published February 2009 Copyright © 2005, 2009, Oracle. All rights reserved. Legal Notices.