Oracle 12c – How to Determine if Users Have Default Password

oracleoracle-12c

I know that I can query the "dba_users_with_defpwd" table, but I've seen reports that for some accounts (mainly SYS and SYSTEM) even if you provide a new non-trivial password during install, they will be shown as having the default password.

Is there any way to verify the users with default passowrds other than manually comparing the "sys.users$" and "sys.defalut_pwd$" tables?

NOTE: I don't have direct access to the environment, I just receive the user tables to check for compliance with the company's rules.

Best Answer

SYS and SYSTEM accounts are incorrectly listed in DBA_USERS_WITH_DEFPWD in 12c (Doc ID 2173962.1)

SYS and SYSTEM have that flag set a database create time, and the flag doesn't clear until the first password change AFTER the database is created. So it may or may not be a default password, but it if it isn't default, it's one that hasn't been changed since the database was created and therefore should be changed.

If you do not have access to this, then:

https://mandysandhu.com/2017/10/20/oracle-12c-syssystem-accounts-are-incorrectly-listed-in-dba_users_with_defpwd/

Related Solutions

Oracle SQLPlus – How to Connect to Oracle 12c from SQLPlus Without Password in Command Line

This answer based on a1ex07 comment:

given the folowing detailes:

user name: demo
password: Pass1234
ip: 1.2.3.4
listener port: 1521
oracle SID: orcl
pdb service name: pdborcl

connect to core db from db host as sysdba:

without need of password: sqlplus / as sysdba
password manually: sqlplus sys as sysdba
password in command: sqlplus sys/Pass1234 as sysdba

connect to core db from db host or remote as sysdba:

password manually: sqlplus sys@\"1.2.3.4:1521/orcl\" as sysdba
password in command: sqlplus sys/Pass1234@1.2.3.4:1521/orcl as sysdba

connect to pdb from db host or remote as sysdba:

password manually: sqlplus sys@\"1.2.3.4:1521/pdborcl\" as sysdba
password in command: sqlplus sys/Pass1234@1.2.3.4:1521/pdborcl as sysdba

connect to pdb from db host or remote as demo (regular user):

password manually: sqlplus demo@\"1.2.3.4:1521/pdborcl\"
password in command: sqlplus demo/Pass1234@1.2.3.4:1521/pdborcl

Oracle VM Default Credentials – What is the Default Username and Password?

The default password for the HR, sys and system accounts is oracle.

The Unix password for the oracle user is also oracle.

Best Answer

Related Solutions

Oracle SQLPlus – How to Connect to Oracle 12c from SQLPlus Without Password in Command Line

Oracle VM Default Credentials – What is the Default Username and Password?

Related Question