This week I received an email notification alerting me that one of my Oracle EPM cloud passwords was about to expire. Hmm…where do I change my password? And how often do I have to worry about this? And…what are the password requirements again?
In our case, security is set up natively in our environment – we haven’t configured single sign-on just yet. Therefore, the users were initially imported and security is maintained separately from our network. In this scenario, password requirements are as follows:
- Passwords need to be changed every 120 days
- Passwords must be at least 8 characters long
- Passwords must contain at least one uppercase, one lowercase, and one numeric character
- Special characters are allowed
- The new password can’t match the most recently chosen password
To change your password, navigate to: https://cloud.oracle.com/sign-in. Note that users don’t change their passwords from within the cloud tool directly. This is because the security to access each cloud pod is managed within My Services.
Select your data center from the drop-down and then log into My Services. You will need to enter your tool’s domain, as well as your username and current password.
Navigate to Users >> My Profile. Here you’ll find a section called “Change Password”.
You must remember your old password to create a new password. Enter your old password, then enter the new one twice, then press Submit. You should be good to go!
If you’re in the situation where you can’t remember your old password you have at least 2 options:
- With help: Have your Identity Domain Administrator reset your password. Other administrator roles can’t perform this action. This should initiate an email to you with a temporary password. You’ll need to log in with the temporary password and then you’ll be redirected to an area to set up a new password.
- -or- Self service: When you go to log in, reset your password yourself. Select the hyperlink Can’t access your account? You’ll be sent to the self-service area to change your password. You’ll need to enter your user name and domain, then answer the 3 challenge questions correctly that you originally set up for your account. Then you’ll be able to reset your password.
Update June 2, 2016: One question that was asked relates to service accounts. Service accounts are often used for automation scripts and generally have non-expiring passwords. When using the native Oracle security within the cloud, this concept of a service account does not currently exist. All passwords for native Oracle cloud security, including administrator passwords, expire in 120 days. This enhancement has been raised with Oracle development. It will be interesting to see if they will entertain this idea, given the security concerns with these products being over cloud.
Update August 5, 2016: A few weeks ago Chris Rothermel inquired about how to change your password with SSO-enabled cloud products. He was unable to change his password through the native cloud process listed in this blog post. I would have expected this not to work, as the above process is for the native cloud security interface only. Additional learnings from that discussion with him: SSO is not currently compatible with EPM Automate. And from some discoveries by my colleague Sandra, SSO is also not compatible with FR. These are bugs that are currently listed for enhancement.