Allen, Unfortunately, the users still have to log onto the primary to alter their expired passwords. However, the logon trigger is still a good idea and I will keep it in mind for environments where password_life_time is not implemented in the profile. Thanks, David Taft From: Allen, Brandon How about a logon trigger that checks the database name and if it's the production database, automatically terminates their session?