Name
CREATE PROFILE
Synopsis
CREATE PROFILEprofile_nameLIMIT [SESSIONS_PER_USER {integer | UNLIMITED | DEFAULT} ] [CPU_PER_SESSION {integer| UNLIMITED | DEFAULT} ] [CPU_PER_CALL {integer| UNLIMITED | DEFAULT} ] [CONNECT_TIME {integer| UNLIMITED | DEFAULT} ] [IDLE_TIME {integer| UNLIMITED | DEFAULT}] [LOGICAL_READS_PER_SESSION {integer| UNLIMITED | DEFAULT} ] [LOGICAL_READS_PER_CALL {integer| UNLIMITED | DEFAULT} ] [PRIVATE_SGA {integer[K | M] | UNLIMITED | DEFAULT} ] [COMPOSITE_LIMIT {integer| UNLIMITED | DEFAULT} ] [FAILED_LOGIN_ATTEMPTS {integer| UNLIMITED | DEFAULT} ] [PASSWORD_LIFE_TIME {integer| UNLIMITED | DEFAULT} ] [PASSWORD_LOCK_TIME{integer| UNLIMITED | DEFAULT} ] [PASSWORD_GRACE_TIME {integer| UNLIMITED | DEFAULT} ] [PASSWORD_REUSE_TIME {integer| UNLIMITED | DEFAULT} ] [PASSWORD_REUSE_MAX {integer| UNLIMITED | DEFAULT} ] [PASSWORD_VERIFY_FUNCTION {function| NULL | DEFAULT} ]
Creates a profile (profile_name) to set limits on database resources. For many of the following keywords, you can specify:
Keywords
- SESSIONS_PER_USER
Limits the number of concurrent sessions for a user.
- CPU_PER_SESSION
Limits the amount of CPU time (in hundredths of a second) that can be used in a session.
- CPU_PER_CALL
Limits the amount of CPU time (in hundredths of a second) for a parse, execute, or fetch call.
- CONNECT_TIME
Limits the total elapsed time (in minutes) for a session.
- IDLE_TIME
Limits the amount of continuous inactive time (in minutes) during a session.
- LOGICAL_READS_PER_SESSION
Limits the number of database blocks read in a session, including those read from memory and disk.
- LOGICAL_READS_PER_CALL
Limits the number of database blocks read for a parse, execute, or fetch call.
- PRIVATE_SGA
Limits the amount of memory (in bytes) a session can allocate in the shared pool of the SGA.
- COMPOSITE_LIMIT
Limits the total resource cost (in service units) for a session. See ALTER RESOURCE COST, earlier in this chapter, for additional information.
- FAILED_LOGIN_ATTEMPTS
Limits the number of failed login attempts allowed before the account is locked.
- PASSWORD_LIFE_TIME
Limits the lifetime of the password. The value is specified in fractions of a day.
- PASSWORD_LOCK_TIME
Specifies the number of days for which the account will be locked after failed login attempts.
- PASSWORD_GRACE_TIME
Specifies the number of days after the password has expired within which the user must change the password.
- PASSWORD_REUSE_TIME
Specifies the minimum number of days before a password can be reused. If this value is set, PASSWORD_REUSE_MAX must be unlimited.
- PASSWORD_REUSE_MAX
Specifies the number of password changes that must occur before the current password can be reused. If this value is set, the parameter PASSWORD_REUSE_TIME must be unlimited.
- PASSWORD_VERIFY_FUNCTION
Specifies the name of a function that will validate a new password. The function must be owned by SYS.
Notes
You must have the CREATE PROFILE privilege to issue this command. To apply the limits associated with the profile to a specific user, you must assign the profile to the user with the CREATE USER or ALTER USER command. In addition, resource limits must be enabled either via the INIT.ORA parameter RESOURCE_LIMIT, or by using the ALTER SYSTEM command.
The parameters that support password aging are specified in days. You can specify a fraction of a day by using standard fraction notation. For example, you can use 1/24 to specify an hour.