Skip to main content

🔐 How to Retain the Same Password for an Expired Oracle Schema (12c & 19c)

🔐 How to Retain the Same Password for an Expired Oracle Schema (12c & 19c)

Sometimes, you might encounter an expired user account in Oracle and want to restore it without asking the end user for their password. This is a common scenario when automating user restores, clones, or refreshes across environments.

Here’s a step-by-step guide for both Oracle 12c and Oracle 19c to extend the password of an expired user account without changing it or involving the user.

🔧 Oracle 12c – Steps to Restore Expired User Without Reset

1️⃣ Check the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

2️⃣ Retrieve the Password Hash from SYS.USER$

SELECT name, password 
FROM sys.user$ 
WHERE name = 'TEST';

3️⃣ Reapply the Same Password Hash

ALTER USER TEST IDENTIFIED BY VALUES '5C3EFBA4ED100B47';

4️⃣ Recheck the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

🧩 Oracle 19c – Password Retention Using SHA-512 Hash

1️⃣ Check the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

2️⃣ Extract the Hashed Password from SPARE4

SELECT spare4 
FROM sys.user$ 
WHERE name = 'TEST';

3️⃣ Reapply the Combined Password Hash

ALTER USER TEST IDENTIFIED BY VALUES 
'S:27D95B70...;T:26FB34A3...';

4️⃣ Confirm Account is Open

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

🔐 Why This Works

  • Oracle stores password hashes in SYS.USER$ (12c and 19c).
  • Using ALTER USER IDENTIFIED BY VALUES, you can set a user’s password using the existing hash.
  • This avoids prompting the user to change or re-enter the password.

⚠️ Security Tips

  • Restrict access to SYS.USER$ – password hashes are sensitive.
  • Use this method only for internal automation or disaster recovery scenarios.
  • Ensure proper auditing and logging when applying password changes via hash.

🎯 This method is extremely useful for Oracle DBAs managing automated clones, refreshes, or disaster recovery without compromising user confidentiality.

Labels:

Comments

Post a Comment

Popular posts from this blog

🚀 Automating Oracle Database Patching with Ansible: A Complete Guide

Oracle database patching has long been the bane of DBAs everywhere. It's a critical task that requires precision, expertise, and often results in extended maintenance windows. What if I told you that you could automate this entire process, reducing both risk and downtime while ensuring consistency across your Oracle estate? 💡 In this comprehensive guide, I'll walk you through a production-ready Ansible playbook that completely automates Oracle patch application using OPatch. Whether you're managing a single Oracle instance or hundreds of databases across your enterprise, this solution will transform your patch management strategy! 🎯 🔥 The Challenge: Why Oracle Patching is Complex Before diving into the solution, let's understand why Oracle patching is so challenging: 🔗 Multiple dependencies : OPatch versions, Oracle Home configurations, running processes ⚠️ Risk of corruption : Incorrect patch application can render databases unusable ⏰ Downtime requirements : Da...
Post a Comment
Read more

🚀 DB BOT: Real-Time Oracle & GoldenGate Monitoring in Slack

In today's fast-paced DevOps environment, quick access to database metrics is essential. This blog will walk you through creating a Slack bot that provides real-time monitoring of Oracle databases and Golden Gate replication. With simple slash commands, your team can check tablespace usage, Flash Recovery Area status, and Golden Gate replication health directly in Slack. Project Overview Our "DB Bot" offers these key capabilities: Monitor tablespace usage across multiple Oracle databases Check Flash Recovery Area (FRA) status on multiple databases View GoldenGate process status across different servers List GoldenGate credential stores Monitor replication lag in GoldenGate Prerequisites Node.js v14+ Python 3.6+ Oracle client libraries (instantclient_21_19) Access to Oracle databases and GoldenGate servers A Slack workspace with permissions to add apps   Project Structure oracle-slack-bot...
1 comment
Read more

Oracle Golden Gate Bi-directional Replication Implementation Guide

Oracle GoldenGate (OGG) is a comprehensive software package for real-time data integration and replication in heterogeneous IT environments. Bi-directional replication enables organizations to maintain synchronized data across multiple data centers, providing high availability, disaster recovery, and load distribution capabilities. This detailed guide provides step-by-step instructions for implementing Oracle GoldenGate bi-directional replication between two Oracle databases. Architecture Overview In this setup, we'll configure: TestDC1 : Primary data center with TestDB1 TestDC2 : Secondary data center with TestDB2 Bi-directional sync : Changes flow in both directions with conflict resolution Step 1: Software Installation ⚠️ SERVER EXECUTION: Perform these steps on BOTH TestDC1 and TestDC2 servers Step 1.1: Download and Prepare Software First, create the necessary directory structure and prepare for installation: # Create directory for the software mkdir /data01/ogg_setup cd /d...
Post a Comment
Read more