Oracle Database Discussions

I'm applying the following security parameters to a test account.

PASSWORD_LIFE_TIME - limits the number of days the same password can be used for authentication
PASSWORD_REUSE_TIME - number of days before a password can be reused
PASSWORD_REUSE_MAX - number of password changes required before the current password can be reused

I created a profile to have all 3 of these params set to 1 (1 so I could try logging in every day). So my 1st day passed and my account password is expired (good). In this case it is a Discoverer account, and when I go to login I get the following error message:

A connection error has occurred.

- OracleBI Discoverer was unable to authenticate using the password provided. This can happen due to an invalid password or because the password was lost while using back, forward, or refresh in your browser. Please enter the password again to continue.

- Failed to connect to database - ORA-28011: the account will expire soon; change your password now


I would have expected to be able to login, and be immediately prompted to change my password. But here, it's as if my account is locked (not just password expired). I can't change my password because I can't get logged in (as a user would). I looked at my test account (through TOAD) and it says my password is expired(grace) and it is not_ locked. I have read in another discussion that both PASSWORD_REUSE_TIME and PASSWORD_REUSE_MAX must be set to something other than unlimited (default) otherwise a password can never be reused. Is my situation similar? When I use password_life_time, do I also need to set another parameter for this to work?


The other params I know of are, but not being set to anything other than default (that might be relevant):
FAILED_LOGIN_ATTEMPTS
PASSWORD_GRACE_TIME
PASSWORD_LOCK_TIME


Thanks for any assistance!

Edited by: user527082 on Dec 10, 2010 11:26 AM