Changes existing login policies or configures logical server access.
ALTER LOGIN POLICY policy-name { { ADD | DROP | SET } LOGICAL SERVER ls-assignment-list [ LOGICAL SERVER ls-override-list ]) ls-assignment-list - (back to Syntax 1) { { ls-name, ...} | ALL | COORDINATOR | SERVER | NONE | DEFAULT } ls-override-list - (back to Syntax 1) { ls-name, ...} ls-name - (back to ls-assignment-list) or (back to ls-override-list) { OPEN | user-defined-ls-name }
ALTER LOGIN POLICY policy-name policy-option policy-option - (back to Syntax 2) policy-option-name = policy-option-value policy-option-name - (back to policy-option) AUTO_UNLOCK_TIME | CHANGE_PASSWORD_DUAL_CONTROL | DEFAULT_LOGICAL_SERVER | LOCKED | MAX_CONNECTIONS | MAX_DAYS_SINCE_LOGIN | MAX_FAILED_LOGIN_ATTEMPTS | MAX_NON_DBA_CONNECTIONS | PASSWORD_EXPIRY_ON_NEXT_LOGIN | PASSWORD_GRACE_TIME | PASSWORD_LIFE_TIME | ROOT_AUTO_UNLOCK_TIME | LDAP_PRIMARY_SERVER | LDAP_SECONDARY_SERVER | LDAP_AUTO_FAILBACK_PERIOD | LDAP_FAILOVER_TO_STD | LDAP_REFRESH_DN policy-option-value - (back to policy-option) { UNLIMITED | DEFAULT | value }
ALTER LOGIN POLICY Test1 password_life_time=UNLIMITED max_failed_login_attempts=5;
If you do not specify a policy option, values for this login policy are taken from the root login policy. New policies do not inherit the MAX_NON_DBA_CONNECTIONS and ROOT_AUTO_UNLOCK_TIME policy options.
All new databases include a root login policy. You can modify the root login policy values, but you cannot delete the policy.