sec_case_sensitive_logon Parameter in oracle
1 min readThe SEC_CASE_SENSITIVE_LOGON parameter is deprecated. It is retained for backward compatibility only.
SEC_CASE_SENSITIVE_LOGON enables or disables password case sensitivity in the database.
true: Database logon passwords are case sensitive. false: Database logon passwords are not case sensitive.
Only users who have the ALTER SYSTEM privilege can set the SEC_CASE_SENSITIVE_LOGON parameter. You should ensure that this parameter is set to TRUE so that case sensitivity is enforced when a user enters a password.
Ensure that the SEC_CASE_SENSITIVE_LOGON parameter is not set to FALSE if the SQLNET.ALLOWED_LOGON_VERSION_SERVER parameter is set to 12 or 12a.
SQL> show parameter sec_case_sensitive_logon
NAME TYPE VALUE
------------------------------------ ----------- -----------------
sec_case_sensitive_logon boolean TRUE
ALTER SYSTEM SET SEC_CASE_SENSITIVE_LOGON = FALSE SCOPE=BOTH SID='*';
Check the password versions for user:
SELECT PASSWORD_VERSIONS FROM DBA_USERS WHERE USERNAME='INFOT';
PASSWORD VERSIONS
-----------------
10G
SELECT PASSWORD_VERSIONS FROM DBA_USERS WHERE USERNAME='SCOTT';
PASSWORD VERSIONS
-----------------
11G 12C
