Adds or changes a password for an Adaptive Server login account.
sp_password caller_passwd, new_passwd [, loginame, immediate]
is your password. When you are changing your own password, this is your old password. When a System Security Officer is using sp_password to change another user’s password, caller_passwd is the System Security Officer’s password.
is the new password for the user, or for loginame. Configure the minimum password length with sp_configure minimum password length. The default is 6 bytes. Enclose passwords that include characters besides A-Z, a-z, or 0-9 in quotation marks. Also enclose passwords that begin with 0-9 in quotes.
the login name of the user whose account password is being changed by the System Security Officer.
specifies whether a password immediately takes effect on users who are logged in. The values are:
0 – users who are logged in keep their old passwords until they reconnect
1 – the password changes immediately in the syslogins table, and users who are logged in get their passwords updated while they are still logged in.
Changes your password from “3blindmice” to “2mediumhot”. (Enclose the passwords in quotes because they begin with numerals.):
sp_password "3blindmice", "2mediumhot"
A System Security Officer whose password is “2tomato” has changed Victoria’s password to “sesame1”:
sp_password "2tomato", sesame1, victoria
Changes your password from NULL to “16tons.” Notice that NULL is not enclosed in quotes (NULL is not a permissible new password):
sp_password null, "16tons"
PRODUCTION...sp_password figaro, lilacs
Changes your password on the PRODUCTION server from “figaro” to “lilacs.”
sp_password invokes the password complexity checks introduced in Adaptive Server 15.0.2.
Any user can change his or her password with sp_password.
New passwords must be at least 6 characters long. They cannot be NULL.
The encrypted text of caller_passwd must match the existing encrypted password of the caller. If it does not, sp_password returns an error message and fails. master.dbo.syslogins lists passwords in encrypted form.
If a client program requires users to have the same password on remote servers as on the local server, users must change their passwords on all the remote servers before changing their local passwords. Execute sp_password as a remote procedure call on each remote server. See Example 4.
You can set the systemwide password expiration configuration parameter to establish a password expiration interval that forces all Adaptive Server login accounts to change passwords on a regular basis. See the System Administration Guide for more information.
When you use sp_password to change your password, Adaptive Server:
Decrypts all your login password encrypted key copies using the old password and then reencrypts them with the new password.
Updates any key copies assigned to you that are designated for login association. The key copies’ password type remains the same.
After a password change, you should log out of all your Adaptive Server sessions before accessing any encrypted data. Alternatively, you can use the immediate parameter of sp_password to propagate the password change to all sessions.
When the SSO issues sp_password to reset a user’s password, the user’s login password-encrypted key copies are dropped by Adaptive Server because the user’s old login password is not available. Adaptive Server requires the key custodian to recreate the key copies for the user, if they are needed.
Only a System Security Officer can execute sp_password to change another user’s password. Any user can execute sp_password to change his or her own password.
Values in event and extrainfo columns from the sysaudits table are:
Event |
Audit option |
Command or access audited |
Information in extrainfo |
---|---|---|---|
38 |
exec_procedure |
Execution of a procedure |
|
System procedures sp_addlogin, sp_adduser