Link to home
Start Free TrialLog in
Avatar of OKE-JP
OKE-JPFlag for Japan

asked on

How to customize the "Maximum password age" to a login of the Amazon RDS for SQL Server?

I have a database instance on the Amazon RDS for SQL Server.
(engine: SQL Server Express 11.00.2100.60.v1 / instance class: db.t2.micro)

I would like to use a login that is applied a customized Password Policy.
I hope to set "180 days" to the "Maximum password age".

But I can not change this setting from the default value, 42 days.
I know I can change this setting using Administrative Tool, if this server is not the Amazon RDS.
Please let me know the way to figure out this matter.
Thanks,
Avatar of Deepak Chauhan
Deepak Chauhan
Flag of India image

You can create a SQL authentication login with CHECK_EXPIRATION=OFF, CHECK_POLICY=OFF

This way password will never be expired.

eg.

CREATE LOGIN Test  WITH PASSWORD= 'Password', CHECK_EXPIRATION=OFF, CHECK_POLICY=OFF
Avatar of OKE-JP

ASKER

Thank you deepakChauhan.

But I can not allow to use  "CHECK_EXPIRATION=OFF".
Because, in this case, we need to use "180 days" as the "Maximum password age".
ASKER CERTIFIED SOLUTION
Avatar of Deepak Chauhan
Deepak Chauhan
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of OKE-JP

ASKER

Thank you deepakChauhan again.

Then do we have only two options to the Amazon RDS for SQL Server, never be expired or 42 days?
per my knowledge .... only this is the options if not changing at windows local security policy.

Because sql server pull that information from Operating system, this is the internal mechanism of sql server.

SELECT  
    [name] 
  , is_policy_checked 
  , is_expiration_checked 
FROM sys.sql_logins;

Open in new window

Avatar of OKE-JP

ASKER

Thank you deepakChauhan.

Then I will use ALTER LOGIN command regularly as a work around to expand the password age.

Thanks,