Skip to Main Content
  • Questions

  • ora-28007 password cannot be reused problem

Breadcrumb

Question and Answer

Tom Kyte

Thanks for the question, Curtis.

Asked: March 12, 2004 - 12:18 pm UTC

Last updated: March 15, 2004 - 1:36 pm UTC

Version: 9.2.0

Viewed 10K+ times! This question is

You Asked

I have created an application and assigned a profile to the users who connect to the database with the Keep Password History entries as follows:
Keep 1 password(s)
Keep for Unlimited day(s)

With this, I am having the users enter a password. Upon expiration/account lock I am having an administrator reset the account to a default password (Reset_Pass1) which then forces the user to enter a new password. However, upon attempting to reset the account to the default password, I am getting the "ora-28007 password cannot be reused" error...even if I go in and change the password to several different passwords, it still will not accept my default once it has been used. I would think that the settings above would only store the last password for an unlimited time, but it seems that it is storing all the passwords that have ever been used. Is there any way to clear the password history?

and Tom said...

please see metalink support note <Note:228991.1>

the documentation has a "bug" in that regard, setting to unlimited makes it impossible to reuse the password ever.


the 10g docs have it right:

</code> http://docs.oracle.com/cd/B12037_01/network.101/b10773/policies.htm#1006720 <code>



Rating

  (2 ratings)

Is this answer out of date? If it is, please let us know via a Comment

Comments

ora-28007 password cannot be reused problem, version 9.2.0

Curtis Bell, March 15, 2004 - 10:34 am UTC

Thank you, it did work.

One note, using the OEM, once a value is selected for keeping either the Keep (value) password(s) or Keep for (value) day(s) the opposite changes to "Unlimited"--which is the Oracle 8i rule (ie: I set the Keep (value) password(s) to "30" and the OEM sets Keep for (value) day(s) to "unlimited"; I change Keep for (value) day(s) to "30" and the OEM changes the Keep (value) password(s) to "unlimited"). However, I had no problems setting both of the values in SQL*plus.

workaround

eric givler, March 15, 2004 - 1:36 pm UTC

We had a similar experience.

To reset the password to a "pre-established" default, we just issued:

alter user test_account profile none;
alter user test_account identified by dummy;
alter user test_account profile pwd_rules;
alter user test_account password expire; -- force change

more

Connor and Chris don't just spend all day on AskTOM. You can also catch regular content via Connor's blog and Chris's blog. Or if video is more your thing, check out Connor's channel and Chris's channel from their Youtube channels. And of course, keep up to date with AskTOM via the official twitter account.