Skip to Main Content
  • Questions
  • Password management of Database Accounts used by application servers


Question and Answer

Connor McDonald

Thanks for the question, John.

Asked: October 09, 2020 - 9:59 am UTC

Answered by: Connor McDonald - Last updated: October 19, 2020 - 2:32 am UTC

Category: Database Administration - Version:

Viewed 100+ times

You Asked


How can we make our bi-yearly password update of accounts used by hundreds of application servers as easy as possible?  Running the "alter user <username> identified by <newpassword" is easy.  The hard part is updating and encrypting the new password in the hundreds of application servers that use those Oracle database accounts.  

Thank you for your help.


and we said...

I would use a wallet for them. Then you never need to change the app server config because they'll never have an encrypted password in there.

Some examples of that here

and you rated our response

  (2 ratings)


October 15, 2020 - 6:49 pm UTC

Reviewer: A reader

Thank you, Connor.

Would you still recommend using a wallet on the application servers if the application server are using only a JDBC thin driver? If yes, then we would have to install the Oracle client in order to use a wallet. In addition to that, we would have the task of having to patch that Oracle client.
Connor McDonald


October 15, 2020 - 10:46 pm UTC

More recent versions can handle it.

Franck did a nice write up here

Perfect! Thank you once again, Connor.

October 16, 2020 - 12:26 pm UTC

Reviewer: A reader

Connor McDonald


October 19, 2020 - 2:32 am UTC

glad we could help

More to Explore


Need more information on Administration? Check out the Administrators guide for the Oracle Database