Manage passwords as below.
The use of account passwords that can easily be guessed by others, such as a password that matches the ID, or the default password provided during installation, is prohibited. Set a complex and strong password.
Change passwords regularly to prevent others from accessing the account in case the password is obtained by unauthorized means. Additionally, configure the settings to force a password change when prompted after the first use.
To encourage regular changing of passwords, set a password expiry period.
In addition, by setting a password authentication policy called a profile, if a database user's password status deviates from the predefined policy, connection to the database server can be refused or the user can be forced to change their password. For information on setting password operation policies using profiles, refer to "Policy-based Login Security" in the Operation Guide.
Point
Password setting and changing is specified using the CERATE ROLE statement or ALTER ROLE statement. Refer to "CREATE ROLE" and "ALTER ROLE" in the PostgreSQL Documentation for details.
Additionally, by using passwordcheck and LDAP authentication, the actions below can be performed:
The default password set during installation can be changed
The password expiry period can be set
The number and types of characters used for the password can be checked
Refer to "passwordcheck" and "LDAP Authentication" in the PostgreSQL Documentation for details.
