Can I store password policies in Oracle
You can store password policies as entries in Oracle Internet Directory.
Then single sign-on solutions that use LDAP adhere to those policies.
There are many password policy attributes you can specify. For example:
- Maximum length of time a given password is valid
- Minimum and maximum time between password changes
- Grace period for logins after password expiration
- Whether to lock out a user after a certain number of invalid login attempts
In the example, a user attempts to access an application that is protected by a
single sign-on solution that uses passwords stored in Oracle Internet Directory.
If the password has expired or the account is locked, the login attempt will fail.