Teradata recommends that all sites enforce strong password controls. Teradata Vantage offers several options for controlling password format and usage.
The DBC.SysSecDefaults table contains a set of global controls that restrict the usage and content of passwords for all users, as shown in the following table.
| Field Name | Description |
|---|---|
| Usage Controls | |
| ExpirePassword | Sets the number of days that must elapse before a password expires. |
| MaxLogonAttempts | Sets the number of erroneous logons the system allows before it locks the user out of the database. |
| LockedUserExpire (Password Lockout Time) | Sets the number of minutes elapsed before the system unlocks a locked user. |
| PasswordReuse | Sets the number of days that must elapse before a user can reuse an expired password. |
| Format Controls | |
| PasswordMinChar | Sets the minimum number of characters required in a password. |
| PasswordMaxChar | Sets the maximum number of characters allowed in a password. |
| PasswordDigits | Determines whether ASCII digits are:
|
| PasswordSpecChar | Indicates whether ASCII special characters are:
You can place tight restrictions on passwords to require that:
|
| PasswordRestrictWords | Determines whether passwords are rejected if they contain words in the Restricted Words list. |
The system creates the DBC.SysSecDefaults table, and provides default values for the password control parameters, during system initialization.