I am going to simulate a scenario when an account owner would like to change the password of his account by himself.
—– as sys user or user with “DBA” role i will create an account “dropme”:
SQL> create user dropme identified by drop23_k23;
SQL> grant create session to dropme;
—– i will now connect using the account “dropme” against DB1 database:
SQL> alter user dropme identified by kitk38_x9 ;
an error ORA-28221 is thrown !!!
To fix that you need to specify the old password:
SQL> alter user dropme identified by kitk38_x9 REPLACE drop23_k23;
Unfortunately some third party applications (from my experience) , the “REPLACE” command clause won’t be executed through the application (password change will be through the application) ……. How to solve that in this case ??
1. You can either grant the account “alter user” permission temporarily:
SQL> grant alter user to dropme;
2. Remove the password verify function (set it to NULL) from the profile…the user is assigned to:
SQL> ALTER PROFILE “DEFAULT” LIMIT