Password Policy

  • Is there anyway you can set up a password protection policy in SQL Server such as:

    1. Password shouldn't be one of the 5 previous ones.

    2. It should be a combination of numeral and alphabets.

    3. Mixture of upper case and lower case

    etc....

    I have SQL 2k SP3 with ID in SQL only. It's a mixed mode environment.

    Thanks in advance.

  • No,

    hopefully in 2k5, but no way to do this now. I've administratively (through email/memo) set a policy and then used NGS Software' SQLCrack to look for passwords that don't meet the standards and have someone's boss talk to them.

    http://www.nextgenss.com/sqlcrack.htm

  • You can avoid all this by setting up a wrapper class around sp_password and implement these policies as I stated. My only worry was if SQL server offers this out of the box. I didn't wanna re-invent the wheel.

    Thanks for your feedback.

    -Nitin

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply