ALTER USER statement

ALTER USER user-name [ IDENTIFIED BY password ]
 [ LOGIN POLICY policy-name ]
 [ FORCE PASSWORD CHANGE { ON | OFF } ]

ALTER USER user-name
[ RESET LOGIN POLICY ]

user-name The name of the user.
IDENTIFIED BY clause The password of the user. A user without a password cannot connect to the database.
policy-name The name of the login policy to assign the user. No change is made if the LOGIN POLICY clause is not specified.
FORCE PASSWORD CHANGE clause Controls whether the user must specify a new password when they log in. This setting overrides the password_expiry_on_next_login option setting in the user's policy.
RESET LOGIN POLICY clause Reverts the settings of a user's login policy to the original values. When you reset a login policy, a user can access an account that has been locked for exceeding a login policy option limit such as max_failed_login_attempts or max_days_since_login.

User IDs cannot:
- begin with white space, single quotes, or double quotes
- end with white space
- contain semicolons
Passwords are case-sensitive and they cannot:
- begin with white space, single quotes, or double quotes
- end with white space
- contain semicolons
- be longer than 255 bytes in length

The verify_password_function option can be used to specify a function to implement password rules (for example, passwords must include at least one digit). If a password verification function is used, you cannot specify more than one user ID and password in the GRANT CONNECT statement.

If you set the password_expiry_on_next_login value to ON, the user's password expires immediately when they next login even if they are assigned to the same policy. You can use the ALTER USER and LOGIN POLICY clauses to force a user to change their password when they next login.

Any user can change their own password. All other changes require DBA authority.

None.

SQL/2008 Vendor extension.

The following statement alters a user named SQLTester. The password is set to welcome. The SQLTester user is assigned to the Test1 login policy and the password does not expire on the next login.

ALTER USER SQLTester IDENTIFIED BY welcome
LOGIN POLICY Test1
FORCE PASSWORD CHANGE off;

ALTER USER statement

Syntax 1 - Change the definition of a database user

Syntax 2 - Revert a user's login policy to the original values

Parameters

Remarks

Permissions

Side effects

See also

Standards and compatibility

Example