The following are features related to passwords for end users of Oracle E-Business Suite.
Passwords can be defined in the Users Window; see: Users Window for more information on setting user passwords.
Oracle E-Business Suite user passwords can optionally be treated as case sensitive, depending on the setting you choose for the site-level profile option Signon Password Case.
The two available settings are:
Sensitive - Passwords are stored and compared as they are, with the password case preserved. During comparison, if the entered password does not match the decrypted version, then an error message is displayed. With Release 12, this option is the default behavior. All newly created or changed passwords are treated as case sensitive.
Note: Users who have not changed their passwords since the installation of release 12 are not affected until they do change their passwords.
A password expiration utility is available if the System Administrator requires that all users convert to case sensitive passwords upon the next login. This utility expires all passwords in FND_USER, including that of SYSADMIN and default Vision accounts, and can be run as a SQL Script ($FND_TOP/sql/AFCPEXPIRE.sql) or as a concurrent program (FNDCPEXPIRE_SQLPLUS).
Insensitive (or not set) - Passwords are treated as case insensitive. In Insensitive mode, passwords are stored and compared in uppercase, similar to that in earlier releases. The entered password and the decrypted password are converted to uppercase prior to comparison.
If you want to preserve case insensitivity in passwords, such as retain the behavior from previous releases, ensure that Signon Password Case value is either set to 'Insensitive', or not set at all.
There are no upgrade or data migration issues with this new feature. The profile option affects only how new passwords are stored. Existing passwords are tested using the policy in effect when they were created.
For enhanced security of passwords, you can use the FNDCPASS utility to migrate local Oracle E-Business Suite user passwords from their current encryption scheme to a non-reversible hash that makes them non-recoverable.
For information on how to use FNDCPASS to migrate to non-reversible hash passwords, see My Oracle Support Knowledge Document 457166.1, Enhance Security With Non-Reversible Hash Password.
For additional information on FNDCPASS and the related AFPASSWD utility, see "Oracle E-Business Suite Password Management."
The GUEST user password cannot include the special character "#".