I'm trying to look for the location on the Oracle database for the parameter that allows you to alter the minimal age for passwords in essence according to the Gov't policy I'm supposed to be able to limit users from changing passwords more than once within 24hrs time limit. I have gone onto the location Oracle_Home/rdbms/admin and found the utlpwdmg.sql script which allows you to alter The VERIFY_PASSWORD_FUNCTION script to fit the environment that your in. However the script has some plsql coding which speaks on other parameters and Gov't policy guidelines such as the amount of characters that a password must contain. Other parameters are spoken for and I've made tweaks here and there to satisfy all the Gov't policy guidelines except the minimal age requirement which is what I'm struggling on now...I'm not sure whether I'm supposed to come up with code that speaks to that parameter. I'm not sure what I should do right now..
The database does store the last time someone changed their password, but we don't expose it via a dictionary view.
But if you decide to google for the internal table name to see where we store it...then of course I cant stop you :-)
Alternatively you could create a DDL trigger that will capture any 'alter user' commands, and keep a log of such commands done by users, eg
https://asktom.oracle.com/pls/apex/f?p=100:11:::NO:RP:P11_QUESTION_ID:9527677800346679012 You could use the verify function to compare the current and proposed password - if they are different, and 24 hours has not elapsed from the last change (captured by your ddl trigger) then you could raise an error.