SQL LOGIN with weak password
I need to create a SQL LOGIN with weak password.
Is there a way to change the password policy or bypass for a specific LOGIN ?
I've tried this:
Is there a way to change the password policy or bypass for a specific LOGIN ?
SQL Azure doesn't allow the CHECK_POLCY clause. See
https://msdn.microsoft.com/en-us/library/ms189751.aspx
Why would you want to create a weak password? I think the CHECK_POLICY option is intended only for legacy applications.
Dan Guzman, SQL Server MVP, http://www.dbdelta.com
Similar Messages
-
I updated my TB to the latest version and now when I open it up it asks me to login with my password but it doesn´t accept it.
http://kb.mozillazine.org/Password_rejected
-
I loaded what I guess is the new version of Firefox and it completely changed my whole task bar. I don't have my Norton Logins with stored passwords, and it's hard to find my favorites. Help get it back to how it was.
Credit Tony E
To downgrade to Firefox 3.6 first uninstall Firefox 4, but do not select the option to "Remove my Firefox personal data". If you select that option it will delete your bookmarks, passwords and other user data. See https://support.mozilla.com/kb/Uninstalling+Firefox
You can then install the latest version of Firefox 3.6 available from http://www.mozilla.com/en-US/firefox/all-older.html - it will automatically use your current bookmarks, passwords etc.
To avoid possible problems with downgrading, I recommend going to your profile folder and deleting the following files if they exist - extensions.cache, extensions.rdf, extensions.ini, extensions.sqlite and localstore.rdf. Deleting these files will force Firefox to rebuild the list of installed extensions, checking their compatibility, and reset toolbar customizations.
For details of how to find your profile folder see https://support.mozilla.com/kb/Profiles -
Login with encrypted password doesn't work
Hi, simple problem:
in login settings with encrypted password option on
The login doesn't work => Error:"AFTER.Trigger_Login_CheckLogin*"
(tested with a user that has an encrypted password)
without encrypted password
The login works
(tested with a user that has a clean password)
Where I wrong?
Thanks
GabrieleHi Gabriele,
how many varchars did you define for the column that´s holding the encrypted passwords ? It has to be at least 32 chars due to the MD5 encryption, if it´s lesser than that, the passwords will get truncated.
Cheers,
Günter Schenk
Adobe Community Expert, Dreamweaver -
Yosemite and login with iCloud password
If I change my password on https://appleid.apple.com when it should be usable for login on iMac/MacBook? All my systems see that password got changed and System Preferences->iCloud requests new password after while. However after two days I still have to login with my OLD iCloud password for all my Macs.
I finally logged out from iCloud totally. Login password had to be changed to local one. Then I re-enabled once again iCloud services from System Preferences and as final phase configured login password to use iCloud one. (<-I think I did system restart before configuring password) Now this is working with current password on iCloud. (Hopefully works also in case of changing iCloud password dunno yet)
-
JSP-MySQL user login with username, password and registration
Hi everyone:
i need to create a simple jsp client login with username and password. There is also a registration link for those not register yet.
I m using tomcat and MySQL and have already create a client login with username and password page.(record already in database).
I m now have no idea on how to create a registration link, ie update the database. please help..the examples i search through google were build by Jboss, strut, ApacheGeronimo which i m not familiar with.
Is it any "package" or "wizard" available in creating the login and registration page? Most of the webpage has build with user login and registration part, may i know how they "create" them?
Please help.. Thanks in advance!hi,
You can use tomcat5.5 for this. you can get help from the following link.
http://tomcat.apache.org/tomcat-5.5-doc/jndi-datasource-examples-howto.html
If ur registrantion page is RegistrationPage.jsp then u can write it:
<a href="RegistrationPage.jsp">Registration Page </a">For Registration page u have to use session & for u can search this in javaworld.com site. MAy from this u will get ur solution -
When enter username & move to next field, password is shown in encrypted format when click on login/sign in button it does not get login & does not even show any error message. The same functionality works in Google Chrome browser.
Do you have that problem when running in the Firefox SafeMode? <br />
[http://support.mozilla.com/en-US/kb/Safe+Mode] <br />
''Don't select anything right now, just use "Continue in SafeMode."''
If not, see this: <br />
[http://support.mozilla.com/en-US/kb/troubleshooting+extensions+and+themes] -
Can 2 users have the same email login with different passwords for seperate itunes accounts
My daughter is currently using the home email address for her account and i have just purchased an ipad. I would like a seperate account. Is it possible to use the same email address as the login and have two accounts.
Thanks
Tracey (a mum who is trying to catch up with technology)It is possible to have two different Apple ID accounts and have a common contact email address, if that is what you are asking. The potential problem is that the Apple ID is in the form of an email address so it can cause some confusion. It would probably be best to actually own the email addresses that match the account IDs.
-
Can't login with right password
I have been happily using my computer and logging in using fingerprint recognition by truesuite access manager then all of a sudden I have turned the computer on and it says "please login by password and enroll your fingerprints". Upon typing in what I know is the right password it still refuses to log me in.
Does anyone know how I might sort this out?
ThanksI'm having the same issue.
I'm trying to enroll my domain user, when the Toshiba FPU asks me for the password, it always refuses it, but I have found out that if I input the password of the machine user (it has the same login as the domain user) it works. The problem is that the FPU registers the fingerprint as belonging to the machine user.
Could the problem be on the same login for a machine and domain user?
Any workaround? -
Hi ~ are there any way there is a SP I can copy a SQL logins
with all: server roles, users mapping of database, database role......etc...
using TSQL ....You can script them out
--SQL Logins:
SELECT 'CREATE LOGIN ' + QUOTENAME(name) + ' WITH PASSWORD='
+ sys.fn_varbintohexstr(password_hash) + ' HASHED, SID='
+ sys.fn_varbintohexstr(sid) + ', '
+ 'DEFAULT_DATABASE='+ QUOTENAME(COALESCE(default_database_name, 'master'))
+ ', DEFAULT_LANGUAGE=' + QUOTENAME(COALESCE(default_language_name,
'us_english'))
+ ', CHECK_EXPIRATION=' + CASE is_expiration_checked WHEN 1 THEN 'ON' ELSE
'OFF' END
+ ', CHECK_POLICY=' + CASE is_policy_checked WHEN 1 THEN 'ON' ELSE 'OFF' END
FROM sys.sql_logins
WHERE name<>'sa'
UNION ALL
--Windows logins:
SELECT 'CREATE LOGIN ' + QUOTENAME(name) + ' FROM WINDOWS WITH '
+ 'DEFAULT_DATABASE='+ QUOTENAME(COALESCE(default_database_name, 'master'))
+ ', DEFAULT_LANGUAGE=' + QUOTENAME(COALESCE(default_language_name,
'us_english'))
FROM sys.server_principals
WHERE type IN ('U','G')
AND name NOT LIKE '%\SQLServer2005MSSQLUser$%$%'
AND name NOT LIKE '%\SQLServer2005SQLAgentUser$%$%'
AND name NOT LIKE '%\SQLServer2005MSFTEUser$%$%'
AND name NOT IN ('BUILTIN\Administrators', 'NT AUTHORITY\SYSTEM');
--Problem: when executing CREATE LOGINs generated by the query above,
--it is not possible to assign default database when that database is
mirrored or unavailable for some other reason.
--Server roles for logins:
SELECT 'EXEC sp_addsrvrolemember ' + QUOTENAME(L.name) + ', ' +
QUOTENAME(R.name)
FROM sys.server_principals L JOIN sys.server_role_members RM
ON L.principal_id=RM.member_principal_id
JOIN sys.server_principals R
ON RM.role_principal_id=R.principal_id
WHERE L.type IN ('U','G','S')
AND L.name NOT LIKE '%\SQLServer2005MSSQLUser$%$%'
AND L.name NOT LIKE '%\SQLServer2005SQLAgentUser$%$%'
AND L.name NOT LIKE '%\SQLServer2005MSFTEUser$%$%'
AND L.name NOT IN ('BUILTIN\Administrators', 'NT AUTHORITY\SYSTEM', 'sa');
Best Regards,Uri Dimant SQL Server MVP,
http://sqlblog.com/blogs/uri_dimant/
MS SQL optimization: MS SQL Development and Optimization
MS SQL Consulting:
Large scale of database and data cleansing
Remote DBA Services:
Improves MS SQL Database Performance
SQL Server Integration Services:
Business Intelligence -
I have a SQL Reporting Services instance being used for ConfigMgr 2012 R2. There is a SQL login with the format "DOMAIN-NET\ReportDataSourceUser" that is mapped to the reporting databases and the site database. If I use the account "DOMAIN-NET\ReportDataSourceUser"
for the data source account, it will fail login. If I change the account for the data source to "domain.net\ReportDataSourceUser", then it logs in successfully. However, ConfigMgr complains that it cannot find the login for "domain.net\ReportDataSourceUser".
I don't get why that is occurring. Any thoughts?
Thanks,
MichaelAccess in SQL is granted to "DOMAIN-NET\ReportDataSourceUser". When I pick the windows ID, I am picking from the domain "domain.net" but then SQL transforms the login to say "DOMAIN-NET\ReportDataSourceUser". That
is normal as what is used is the Pre-Windows2000 domain format in SQL.
This is nothing I am familiar with, but I don't have a domain to play with here.
I'm starting to think that the issue is with the ConfigMgr application. There may be a problem with the account used there. I have two versions there - one with the format "DOMAIN-NET\ReportDataSourceUser" (Which doesn't work)
and one with the format "domain.net\ReportDataSourceUser" (Which does work). Maybe the non-working one has an incorrect password specified.
Password? You don't use password when log in with Windows authentication in SQL Server. But it could be a case of a bad SID.
Or are these passwords used by ConfigMgr for something? (Again, this is an application I'm completely ignorant of.)
Erland Sommarskog, SQL Server MVP, [email protected] -
SQL Login "disabled" flag does not work with asymmetric key??
If I create a normal interactive SQL login, the Disabled flag for the login controls whether that user can log in with the login name and password. For example,
ALTER LOGIN MyUser DISABLE
will prevent anyone from logging in with this MyUser login.
However if I create a SQL login FROM ASYMMETRIC KEY, the Disabled flag for the login seems to have no effect. For example, assemblies in executable files from which the asymmetric key was created can still be used even if the login is "disabled".
Is this by design? If so, why?
It would seem to me that if a login is disabled, no rights granted to that login should be accessible, including "GRANT EXTERNAL ACCESS ASSEMBLY TO ..." and "GRANT UNSAFE ASSEMBLY TO..."
(I suspect that disabling a login will also have no effect on execution of stored procedures signed with that login's asymmetric key either, though I have not test this.)
Can someone please comment on this behavior?Disabling a Login has no effect on Permissions.
The only thing it prevents, is the interactive process of “logging in”.
That Login can still be impersonated also. – And this is in fact important to know(!).
That’s also in BOL (ALTER LOGIN):
http://technet.microsoft.com/en-us/library/ms189828.aspx
Andreas Wolter | Microsoft Certified Master SQL Server
Blog: www.insidesql.org/blogs/andreaswolter
Web: www.andreas-wolter.com -
Password change fails in SQL Developer with verify function...
A couple of months ago I enforced a password verify function on our 11.2.0.3 databases and also one legacy 10.2.0.4 database.
At the time I tested on my account (which had elevated privileges...doh!). Now some users are hitting expiry, they can't change it via SQL Developer.
If I create a user with 'create session' privilege and set their profile to one that uses the verify function (see both below), I then log in to SQL Developer (we have tried with versions 3.1 (Windows) and 3.2 (Linux) with same failure results.
BTW,.. the password verify function enforces the following:
password must be minimum of 8 characters
password must not be the same as the user name, or user name (1-100)
password must contain at least a single digit
password must contain at least a single character
1. Works = I log into the local server and run command line SQLPlus, type 'password' and update. I can successfully change my password.
2. Fails = I log into the local server and run command line SQLPlus, type 'alter user <me> identified by <newpwd>;' I get:
TEST: SUTEMP > alter user sutemp identified by carport9999;
alter user sutemp identified by carport9999
ERROR at line 1:
ORA-28221: REPLACE not specified
This error is because the account does not have the 'alter user' privilege. I'm okay with this, as I don't want our users having this privilege.
3. I start SQL Developer 3.2, type 'alter user <me> identified by <newpwd>;' I get the same ORA-28221 error as above. That is fine, and as expected.
4. Now in SQL Developer, I type 'password', set a valid password, but I get 'Failed to change password' in the Script Output tab.
I have a database 'after servererror on database' trigger set, and querying the database table it is logging into, I see a record with a date stamp matching my failure with a server_error=28221 (the same as above).
So I'm wondering if I'm doing something wrong here, or if this is a bug in SQL Developer. I don't want standard users having 'alter user' privileges, but I do want to enforce password verification.
I get the same result on three 11.2.0.3 databases (haven't tried any more but suspect same results for others) and one legacy 10.2.0.4 database, and using SQL Developer 3.1 and 3.2.
DBA_PROFILE used:
PROFILE
RESOURCE_NAME
RESOURCE LIMIT
CTRU
COMPOSITE_LIMIT
KERNEL DEFAULT
CTRU
SESSIONS_PER_USER
KERNEL 10
CTRU
CPU_PER_SESSION
KERNEL DEFAULT
CTRU
CPU_PER_CALL
KERNEL DEFAULT
CTRU
LOGICAL_READS_PER_SESSION KERNEL DEFAULT
CTRU
LOGICAL_READS_PER_CALL
KERNEL DEFAULT
CTRU
IDLE_TIME
KERNEL DEFAULT
CTRU
CONNECT_TIME
KERNEL DEFAULT
CTRU
PRIVATE_SGA
KERNEL DEFAULT
CTRU
FAILED_LOGIN_ATTEMPTS
PASSWORD 10
CTRU
PASSWORD_LIFE_TIME
PASSWORD 180
CTRU
PASSWORD_REUSE_TIME
PASSWORD DEFAULT
CTRU
PASSWORD_REUSE_MAX
PASSWORD 5
CTRU
PASSWORD_VERIFY_FUNCTION PASSWORD VERIFY_FUNCTION_11G
CTRU
PASSWORD_LOCK_TIME
PASSWORD .002
CTRU
PASSWORD_GRACE_TIME
PASSWORD 21
16 rows selected.
Verify Function used:
$ cat utlpwdmg.sql
Rem
Rem $Header: utlpwdmg.sql 02-aug-2006.08:18:05 asurpur Exp $
Rem
Rem utlpwdmg.sql
Rem
Rem Copyright (c) 2006, Oracle. All rights reserved.
Rem
Rem NAME
Rem utlpwdmg.sql - script for Default Password Resource Limits
Rem
Rem DESCRIPTION
Rem This is a script for enabling the password management features
Rem by setting the default password resource limits.
Rem
Rem NOTES
Rem This file contains a function for minimum checking of password
Rem complexity. This is more of a sample function that the customer
Rem can use to develop the function for actual complexity checks that the
Rem customer wants to make on the new password.
Rem
Rem MODIFIED (MM/DD/YY)
Rem suren 05/09/13 - customise for NIHI use
Rem asurpur 05/30/06 - fix - 5246666 beef up password complexity check
Rem nireland 08/31/00 - Improve check for username=password. #1390553
Rem nireland 06/28/00 - Fix null old password test. #1341892
Rem asurpur 04/17/97 - Fix for bug479763
Rem asurpur 12/12/96 - Changing the name of password_verify_function
Rem asurpur 05/30/96 - New script for default password management
Rem asurpur 05/30/96 - Created
Rem
-- This script sets the default password resource parameters
-- This script needs to be run to enable the password features.
-- However the default resource parameters can be changed based
-- on the need.
-- A default password complexity function is also provided.
-- This function makes the minimum complexity checks like
-- the minimum length of the password, password not same as the
-- username, etc. The user may enhance this function according to
-- the need.
-- This function must be created in SYS schema.
-- connect sys/<password> as sysdba before running the script
CREATE OR REPLACE FUNCTION verify_function_11G
(username varchar2,
password varchar2,
old_password varchar2)
RETURN boolean IS
n boolean;
m integer;
differ integer;
isdigit boolean;
ischar boolean;
ispunct boolean;
db_name varchar2(40);
digitarray varchar2(20);
punctarray varchar2(25);
chararray varchar2(52);
i_char varchar2(10);
simple_password varchar2(10);
reverse_user varchar2(32);
BEGIN
digitarray:= '0123456789';
chararray:= 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
-- Check for the minimum length of the password
IF length(password) < 8 THEN
raise_application_error(-20001, 'Password length less than 8');
END IF;
-- Check if the password is same as the username or username(1-100)
IF NLS_LOWER(password) = NLS_LOWER(username) THEN
raise_application_error(-20002, 'Password same as or similar to user');
END IF;
FOR i IN 1..100 LOOP
i_char := to_char(i);
if NLS_LOWER(username)|| i_char = NLS_LOWER(password) THEN
raise_application_error(-20005, 'Password same as or similar to user name ');
END IF;
END LOOP;
-- Check if the password contains at least one letter, one digit
-- 1. Check for the digit
isdigit:=FALSE;
m := length(password);
FOR i IN 1..10 LOOP
FOR j IN 1..m LOOP
IF substr(password,j,1) = substr(digitarray,i,1) THEN
isdigit:=TRUE;
GOTO findchar;
END IF;
END LOOP;
END LOOP;
IF isdigit = FALSE THEN
raise_application_error(-20008, 'Password must contain at least one digit, one character');
END IF;
-- 2. Check for the character
<<findchar>>
ischar:=FALSE;
FOR i IN 1..length(chararray) LOOP
FOR j IN 1..m LOOP
IF substr(password,j,1) = substr(chararray,i,1) THEN
ischar:=TRUE;
GOTO endsearch;
END IF;
END LOOP;
END LOOP;
IF ischar = FALSE THEN
raise_application_error(-20009, 'Password must contain at least one digit, and one character');
END IF;
<<endsearch>>
-- Check if the password differs from the previous password by at least
-- 3 letters
IF old_password IS NOT NULL THEN
differ := length(old_password) - length(password);
differ := abs(differ);
IF differ < 3 THEN
IF length(password) < length(old_password) THEN
m := length(password);
ELSE
m := length(old_password);
END IF;
FOR i IN 1..m LOOP
IF substr(password,i,1) != substr(old_password,i,1) THEN
differ := differ + 1;
END IF;
END LOOP;
IF differ < 3 THEN
raise_application_error(-20011, 'Password should differ from the old password by at least 3 characters');
END IF;
END IF;
END IF;
-- Everything is fine; return TRUE ;
RETURN(TRUE);
END;
alter profile ctru limit password_verify_function verify_function_11g;
alter profile default limit password_verify_function verify_function_11g;
alter profile web_and_it limit password_verify_function verify_function_11g;okay,... I just saw another website which shows I should put in the 'replace <oldpwd>' clause in.
This works in SQL Developer: alter user sutemp identified by carport999 replace garage999;
So why does the 'password' command fail? (Developers: it would also be helpful to have the ORA- error displayed as opposed to 'Failed to change password') -
While send/receive email, I have received an error message "Sending of password d"?
However with same login details, I am able to login with other application.
I have changed password still the issue remains as it is.https://support.mozilla.org/en-US/kb/cannot-send-messages
-
I AM A CREATIVE CLOUD MEMBER FOR SOMETIME BUT NOW WHEN I LOGIN WITH THE CORRECT PASSWORD I STILL GET SIGNED OUT MESSAGE AND THEN WHEN TRIED THE SOLUTION GIVEN BY HELP THAT IS TO DELETE OPM.DB FILE OR SECOND SOLUTION INSTALL A FRESH CREATIVE CLOUD FOR DESKTOP APP OR EVEN SOLUTION OF RUN OF IMSLIBREPLACER IM STIILL NOT ABLE TO LOGIN TO MY CREATIVE CLOUD FOR DEKTOP APP . PLEASE HELP ME AS I NEED TO GET IN AND EXPLORE MORE OF MY DOWNLOADED S/W
I HAVE TRIED ALL POSSIBLE SOLUTION BUT AM AMAZED HOW THIS IS HAPPENING TO ME.
PLEASE PLEASE HELP ME .Creative Cloud ConnectionHi Alfred,
I would like to know the exact error message when you sign in, in the meanwhile please try the following steps assuming its Windows, let me know if its a MAC:
1) Go to Start button>> Control panel>> Uninstall a program.
2) Check if you see Browser safeguard there, if yes then uninstall it.
3) Open Internet explorer>> Tools>> Internet options>> Connections>> Lan Settings>> and it should be like this.
-Ankit
Maybe you are looking for
-
Distortion in Audition 3.0.1 and Win7 64 bit
On board audio on my mobo took a dump, I don't like on board anyway. I added a Diamond PCI 7.1 (I am not spending $200 on a big time card, this one meets my needs). I have 2 hard drives with OS. One is XP sp3, the other Win7 sp1. I can't get ASIO wor
-
Stored procedure in oracle plsql giving Error
Hi all, I want to create stored procedure in oracle. In that,I want to update if record is present in the table else want to insert that record in that table. Here is my stored proc which I write. I have very little knowledge about oracle(to be hones
-
IMac 2012 27'' buying from Azerbaijan
Hello. I want to buy an iMac from Azerbaijan. But prices are too high in here. CAN I OREDER AN IMAC FROM USA TO MY COUNTRY? Thanks.
-
I have tried turning my iPad off and on several times over the past two days since it stopped working. Also, I have now connected it to my main apple computer, thinking the two would perhaps 'sync', to no avail. My computer seems to be working fine
-
I have a new Canon 60Da and an old Photoshop CS4 which requires that I use DNG Converter to convert my .cr2 files to DNGs for access. I'm using version 7.4 of the converter, just downloaded and installed on a WinVista 64 machine. If I open the conv