Changes existing login policies or configures logical server access.
Syntax 1
ALTER LOGIN POLICY policy-name { { ADD | DROP | SET } LOGICAL SERVER ls-assignment-list [ LOGICAL SERVER ls-override-list ]) ls-assignment-list: { { ls-name, ...} | ALL | COORDINATOR | SERVER | NONE | DEFAULT } ls-override-list: { ls-name, ...} ls-name: { OPEN | user-defined-ls-name }
Syntax 2
ALTER LOGIN POLICY policy-name policy-option policy-option: policy-option-name = policy-option-value policy-option-value: { UNLIMITED | DEFAULT | value } policy-option-name: AUTO_UNLOCK_TIME | CHANGE_PASSWORD_DUAL_CONTROL | DEFAULT_LOGICAL_SERVER | LOCKED | MAX_CONNECTIONS | MAX_DAYS_SINCE_LOGIN | MAX_FAILED_LOGIN_ATTEMPTS | MAX_NON_DBA_CONNECTIONS | PASSWORD_EXPIRY_ON_NEXT_LOGIN | PASSWORD_GRACE_TIME | PASSWORD_LIFE_TIME | ROOT_AUTO_UNLOCK_TIME | LDAP_PRIMARY_SERVER | LDAP_SECONDARY_SERVER | LDAP_AUTO_FAILBACK_PERIOD | LDAP_FAILOVER_TO_STD | LDAP_REFRESH_DN
ALTER LOGIN POLICY Test1 password_life_time=UNLIMITED max_failed_login_attempts=5;
If you do not specify a policy option, values for this login policy are taken from the root login policy. New policies do not inherit the MAX_NON_DBA_CONNECTIONS and ROOT_AUTO_UNLOCK_TIME policy options.
All new databases include a root login policy. You can modify the root login policy values, but you cannot delete the policy.
Requires the MANAGE ANY LOGIN POLICY system privilege.