I'm curious as to why your security officer would proscribe changing a password more than once a day. However, you could write a verify_function which looks at the ptime field is user$. Ian MacGregor -----Original Message----- From: oracle-l-bounce@xxxxxxxxxxxxx [mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of Michael Chan Sent: Thursday, November 09, 2006 6:29 AM To: oracle-l@xxxxxxxxxxxxx Subject: password change control Hi All, I'm being asked by my security officer that if I can put in control such that a database user can only change password once a day. i.e. the minimum life time of a password should be 1. Any suggestions/recommendations ? Thanks, PH Chan -- //www.freelists.org/webpage/oracle-l