Studio user authentication

In situations where LDAP isn't used, administrators can configure user authentication with Studio's own user management tools.

Studio users typically log in with their email addresses, but you can enable them to use their screen names instead. You can also restrict certain email addresses and screen names, and enable users to log in automatically.

Additionally, Studio provides tools for creating and enforcing password policies. For example, you can:

Enable users to change their own passwords.
Require users to change their passwords the first time they log in.
Prohibit the use of dictionary words in passwords.
Specify a minimum password length.
Prohibit users from reusing a certain number of their most recent passwords.
Set passwords to expire within a certain time frame.

To keep users and the application itself secure, you should create a strong password policy. At a minimum, Oracle recommends you require passwords to contain at least six characters and set them to expire periodically.

For more information on configuring user authentication, see the Administrator's Guide.