Administrator Guide : Security : Authentication : Default solidDB® authentication
  
Default solidDB® authentication
By default, the solidDB® server offers a traditional (internal) authentication mechanism in which a user has to provide a valid user ID and password combination to connect to a database. By default, passwords are encrypted using the build-in DES algorithm.
Username
Minimum length: 2 characters.
Maximum length: 80 characters.
The username must begin with a letter or an underscore. Use lowercase letters from a to z, uppercase letters from A to Z, the underscore character _, and numbers from 0 to 9.
The database system administrator’s username cannot be changed with the ALTER USER command. See Changing DBA username and password in the solidDB® SQL Guide.
Password
Minimum length: 3 characters.
Maximum length: 80 characters.
The password can begin with any letter, underscore, or number. Use lowercase letters from a to z, uppercase letters from A to Z, the underscore character _, and numbers from 0 to 9.
You cannot use the double quotation mark (") in the password. The use of apostrophe ('), semicolon (;), or space is discouraged, because some tools might not accept these characters in the password.
If you plan to use solidDB® Remote Control (solcon), do not create passwords with non-ASCII characters, because solcon does not perform UTF-8 translation for any input.
You can also enter the password from a file. For more information, see Entering password from a file.
The solidDB® passwords do not expire. If you want set up user accounts with expiring passwords, use the operating-system-based mechanism for authentication.
Note You must remember your username and password to be able to connect to solidDB®. There are no default user names. The administrator username you enter when creating the database is the only username available for connecting to the new database for the first time. If you cannot connect to solidDB® because you have forgotten your system administrator user name or password, contact solidDB® Support.
Lowercase characters in user names, passwords, and system catalog names are converted to uppercase.
If you try to log in four times with an incorrect username or password, the system blocks your IP address for a maximum of 60 seconds. This feature cannot be configured or switched off.
Encryption of passwords
By default, the passwords of internally authenticated users are encrypted using the build-in DES algorithm. The default encryption can be disabled by setting the General.UseEncryption parameter to no.
By default, the passwords of internally authenticated users are sent over the network connection in a scrambled format. However, you can use the OpenSSL to enable strong encryption when sending the password over the network connection. To enable strong encryption when sending passwords of internally authenticated users over a network connection, set the General.CryptoLoginRequired parameter to yes. If you set the General.CryptoLoginRequired parameter to yes, the OpenSSL libcrypto must be installed and enabled on the client computer.
See also
Authentication