syslogins

master database only

Description

syslogins contains one row for each valid Adaptive Server user account or login profile.

Columns

The columns for syslogins are:

Name

Datatype

Description

suid

int

Server user ID or login profile ID.

status

smallint

Status of the account (see Table 1-16).

accdate

datetime

Date totcpu and totio were last cleared.

totcpu

int

CPU time accumulated by login.

totio

int

I/O accumulated by login.

spacelimit

int

Reserved.

timelimit

int

Reserved.

resultlimit

int

Reserved.

dbname

sysname null

Name of database in which to put user when connection established. Column is not applicable for a login row if a login profile is associated with the login account.

name

sysname

Login name of user.

password

varbinary(128) null

One-way hash of user password. The contents of syslogins.password depend on the value for sp_passwordpolicy allow password downgrade.

language

varchar(30) null

User’s default language. If a login profile is associated with the login account, this column is not applicable for a login row.

pwdate

datetime null

Date the password was last changed.

audflags

int null

User’s audit settings. One of:

  • 0x00000001 – successful reference to a user-created table

  • 0x00000002 – failure

  • 0x00000004 – successful reference to a user-created view

  • 0x00000008 – failure

  • 0x00000010 – user cmdtext auditing

  • 0x00000020 – required padding

  • 0x00000040 – all successful user action auditing

  • 0x00000080 – all failed user action auditing

fullname

varchar(30) null

Full name of the user.

srvname

varchar(30) null

Name of server to which a passthrough connection must be established if the AUTOCONNECT flag is turned on.

logincount

smallint null

Number of failed login attempts; reset to 0 by a successful login.

procid

int null

Stores the login trigger registered with the login script. If a login profile is associated with the login account, this column is not applicable for a login row.

lastlogindate

datetime

Timestamp for the user’s last login.

crdate

datetime

Timestamp when the login or login profile was created.

locksuid

int

The server user ID (suid) responsible for locking the login.

lockreason

int

Reasons for lock; one of:

  • NULL – account has not been locked

  • 0 – locked by locksuid by executing sp_locklogin

  • 1 – inactive account locked by executing sp_locklogin 'all', 'lock', 'ndays'

  • 2 – Adaptive Server locked the account because number of failed login attempts reached max failed logins.

  • 3 – locked by locksuid because the password downgrade period has ended and a login or role was not transitioned to SHA-256

  • 4 – automatically locked by locksuid due to inactivity.

lockdate

datetime

If:

  • The login account is locked – syslogins.lockdate specifies the timestamp when the login was locked.

  • The login account is not locked, and:

    • syslogins.lockdate is non-NULL – specifies the timestamp when the login was unlocked.

    • syslogins.lockdate is NULL – specifies that the login was never locked.

crsuid

int

Server user ID of the creator of login or login profile.

lpid

int

Login profile ID. One of:

  • null – login account is associated with default login profile, if any

  • -1– login profile is ignored for login account.

  • suid – the login profile ID.

On the Adaptive Server distribution media, syslogins contains an entry in which the name is “sa”, the suid is 1, and the password is null. It also contains the entry “probe” with an unpublished password. The login “probe” and the user “probe” exist for the two-phase commit probe process, which uses a challenge and response mechanism to access Adaptive Server.

Table 1-16: status control bits in the syslogins table

Decimal

Hex

Status

2

0x2

Account is locked.

4

0x4

Password has expired.

8

0x8

Indicates that the value of exempt inactive lock is set to TRUE. It is not applicable for login profile rows.

16

0x10

OMNI:autoconnect mode is enabled.

32

0x20

May use Adaptive Server internal authentication mechanism – syslogins.

64

0x40

May use LDAP external authentication.

128

0x80

May use PAM external authentication.

256

0x100

May use Kerberos external authentication.

512

0x200

Indicates a login profile.

1536

0x200 | 0x400

Indicates a default login profile.

2048

0x800

Indicates an authentication mechanism specified in a login profile.

Indexes