Skip to main content

🔐 How to Retain the Same Password for an Expired Oracle Schema (12c & 19c)

🔐 How to Retain the Same Password for an Expired Oracle Schema (12c & 19c)

Sometimes, you might encounter an expired user account in Oracle and want to restore it without asking the end user for their password. This is a common scenario when automating user restores, clones, or refreshes across environments.

Here’s a step-by-step guide for both Oracle 12c and Oracle 19c to extend the password of an expired user account without changing it or involving the user.

🔧 Oracle 12c – Steps to Restore Expired User Without Reset

1️⃣ Check the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

2️⃣ Retrieve the Password Hash from SYS.USER$

SELECT name, password 
FROM sys.user$ 
WHERE name = 'TEST';

3️⃣ Reapply the Same Password Hash

ALTER USER TEST IDENTIFIED BY VALUES '5C3EFBA4ED100B47';

4️⃣ Recheck the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

🧩 Oracle 19c – Password Retention Using SHA-512 Hash

1️⃣ Check the Account Status

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

2️⃣ Extract the Hashed Password from SPARE4

SELECT spare4 
FROM sys.user$ 
WHERE name = 'TEST';

3️⃣ Reapply the Combined Password Hash

ALTER USER TEST IDENTIFIED BY VALUES 
'S:27D95B70...;T:26FB34A3...';

4️⃣ Confirm Account is Open

SELECT username, account_status 
FROM dba_users 
WHERE username = 'TEST';

🔐 Why This Works

  • Oracle stores password hashes in SYS.USER$ (12c and 19c).
  • Using ALTER USER IDENTIFIED BY VALUES, you can set a user’s password using the existing hash.
  • This avoids prompting the user to change or re-enter the password.

⚠️ Security Tips

  • Restrict access to SYS.USER$ – password hashes are sensitive.
  • Use this method only for internal automation or disaster recovery scenarios.
  • Ensure proper auditing and logging when applying password changes via hash.

🎯 This method is extremely useful for Oracle DBAs managing automated clones, refreshes, or disaster recovery without compromising user confidentiality.

Labels:

Comments

Post a Comment

Popular posts from this blog

🚀 Automating Oracle Database Patching with Ansible: A Complete Guide

Oracle database patching has long been the bane of DBAs everywhere. It's a critical task that requires precision, expertise, and often results in extended maintenance windows. What if I told you that you could automate this entire process, reducing both risk and downtime while ensuring consistency across your Oracle estate? 💡 In this comprehensive guide, I'll walk you through a production-ready Ansible playbook that completely automates Oracle patch application using OPatch. Whether you're managing a single Oracle instance or hundreds of databases across your enterprise, this solution will transform your patch management strategy! 🎯 🔥 The Challenge: Why Oracle Patching is Complex Before diving into the solution, let's understand why Oracle patching is so challenging: 🔗 Multiple dependencies : OPatch versions, Oracle Home configurations, running processes ⚠️ Risk of corruption : Incorrect patch application can render databases unusable ⏰ Downtime requirements : Da...
Post a Comment
Read more

Oracle RAC Switchover & Switchback: Step-by-Step Guide

 Ensuring business continuity requires regular Disaster Recovery (DR) drills. This guide covers the Switchover and Switchback process between Primary (DC) and Standby (DR) databases . Pre-checks Before Performing Switchover Before starting the activity, ensure there are no active sessions in the database. If any are found, share the session details with the application team, get their confirmation, and terminate the sessions. Primary Database Name: PRIMARY Standby Database Name: STANDBY  Identify Active Sessions set lines 999 pages 999 col machine for a30 col username for a30 col program for a30 compute sum of count on report break on report select inst_id,username,osuser,machine,program,status,count(1) "count" from gv$session where inst_id=1 and program like 'JDBC%' group by inst_id,username,osuser,machine,program,status order by 1,2; select inst_id,username,osuser,machine,program,status,count(1) "count" from gv$session where inst_id=2 and program lik...
Post a Comment
Read more

Mastering Oracle RAC with SRVCTL Commands

Oracle Real Application Clusters (RAC) provide high availability, scalability, and manageability for databases. One of the most powerful tools for managing RAC databases is srvctl , a command-line utility that allows administrators to control various database services. This blog explores essential srvctl commands to help you efficiently manage Oracle RAC environments. 1. Checking Database Configuration and Status  List all available databases on the host:                  srvctl config database   Check the status of a specific database and its instances:                    srvctl status database -d <database_name>   Retrieve detailed status information about a database, including its instances and states:                    srvctl status database -d <database_name> -v 2. Stopping and Starting Databases   ...
Post a Comment
Read more