systemwide password expiration

systemwide password expiration sets the number of days that passwords remain in effect after they are changed.

Summary Information

Default value


Range of values




Display level


Required role

System security officer

Configuration group

Security Related

If systemwide password expiration is set to 0, passwords do not expire.

The password expires when the number of specified days passes. For example, if you create a new login on August 1, 2013 at 10:30 a.m., with a password expiration interval of 30 days, the password expires on August 31, 2013 at 10:30 a.m.

An account’s password is considered expired if an interval greater than number_of_days has passed since the last time the password for that account was changed.

When the number of days remaining before expiration is less than 25 percent of the value of systemwide password expiration or 7 days, whichever is greater, each time the user logs in, a message displays, giving the number of days remaining before expiration. Users can change their passwords anytime before expiration.

systemwide password expiration is superseded by the password policy settings. For more information, see Choose and Create a Password in the Security Administration Guide.

When an account’s password has expired, the user can still log in to SAP ASE but cannot execute any commands until he or she has used alter login to change his or her password.

This restriction applies only to login sessions established after the password has expired. Users who are logged in when their passwords expire are not affected until the next time they log in.