By defining login security policies as profiles and assigning profiles to database users, you can automatically lock users who are not connected to the database for an extended period of time and enforce password authentication policies.

Profiles can have the following settings:

• Managing dormant users

• Managing policies when using password authentication

  • Set a password life time

  • Restrict password reuse

  • Lock users that have failed to log in continuously

  • Set a grace period after the password life time until the database can no longer be operated

  • If the account is locked due to repeated login failures, set the period during which the lock will be automatically unlocke.

  • Set a grace period (gradual password rollover time) for using old passwords after changing password

This enables login management and password management according to the security policy.