 |
 |
Archives of the TeradataForum
Message Posted: Wed, 16 Apr 2008 @ 16:34:26 GMT
| Subj: | | Re: Extra security elements |
| |
| From: | | Mike Steeves |
Check out the DBC.SysSecDefaults table. There are a number of system level controls you can set for userids.
DBC.SysSecDefaults
PrimeIndex
ExpirePassword
PasswordMinChar
PasswordMaxChar
PasswordDigits
PasswordSpecChar
MaxLogonAttempts
LockedUserExpire
PasswordReuse
As for expiring a specific group of user's passwords, the easiest way to do that would be to add them to a Profile and define the
password specific criteria at the Profile level.
Example:
create profile M3_ACCT_200GB_Expire as
account = ('$M3ACCT$&D&H&S')
default database = null
spool = 214748364780
temporary = 214748364780
password = ( expire = 60 (Password expires after 60 days)
, minchar = 6 (Password must have at least 6 characters)
, maxchar = 30 (Password can have up to 30 characters)
, digits = 'y' (Allow numbers in the password)
, specchar = 'y' (Allow special characters in
the password, *&$#)
, maxlogonattempts = 6 (userid locked after
6 failed attempts)
, lockeduserexpire = 1440 (userid is automatically unlocked
after 1440 minutes, aka. 24 hours)
, reuse = 240 ); (Password can be reused after 240 days)
Comment on profile M3_ACCT_200GB_Expire as
'Accounting users with a Spool limit of 200GB and passwords expire after 60 days.';
| |
