23.9.4 Checking the permitted number of consecutive certification failures and the account lock period

Executor: DBA privilege holder or auditor

To check the permitted number of consecutive certification failures and the account lock period that have been set, you search the SQL_SYSPARAMS dictionary table. An example follows:

Example
Check the permitted number of consecutive certification failures and the account lock period that have been set:

SELECT * FROM MASTER.SQL_SYSPARAMS
   WHERE PARAM_KEY='PERMISSION_COUNT'
   OR PARAM_KEY='LOCK_MINUTE'

Execution results 1

PARAM_KIND           FUNCTION_KEY   PARAM_KEY        INT_VALUE  CHAR_VALUE
----------------------------------------------------------------------------
CONNECTION_SECURITY  CONNECT        PERMISSION_COUNT 2          2
CONNECTION_SECURITY  CONNECT        LOCK_MINUTE      1440       1440

Explanation
The permitted number of consecutive certification failures is 2, and the account lock period is 1440 minutes.
The account lock period is stored in SQL_SYSPARAMS as a number of minutes.
Execution result 2

PARAM_KIND           FUNCTION_KEY   PARAM_KEY        INT_VALUE  CHAR_VALUE
----------------------------------------------------------------------------
CONNECTION_SECURITY  CONNECT        PERMISSION_COUNT 2          2
CONNECTION_SECURITY  CONNECT        LOCK_MINUTE      NULL       UNLIMITED

Explanation
The permitted number of consecutive certification failures is 2, and the account lock period is permanent (UNLIMITED).