Password restrictions

This section describes some techniques to control password policies for database users.

The following features allow for greater control in password setup for users:
  • Password expiration

    You can specify the number of days that a database user account password is valid as a system-wide setting. You can also specify the password expiration rate on a per-user and per-group basis. You can also expire an account password immediately. For more information, see the IBM® Netezza® System Administrator’s Guide.

  • Password authentication

    To set the password authentication for a user to LOCAL, use the AUTH LOCAL option for CREATE USER or ALTER USER. This option sets the overriding authentication for the user to LOCAL (checks the password against the local database/catalog), regardless of the connection setting. To revert this setting to the default setting, use the AUTH DEFAULT option.

  • Password string restrictions

    You can set a password strength check, based on restrictions. For more information, see the IBM Netezza System Administrator’s Guide.

For more information about the specific usage of SQL command-line options, see the IBM Netezza Database User’s Guide.