My Oracle Support Banner

Is there a Password Policy in WebLogic which can Restrict a User from Using the Last Three Provided Password. (Doc ID 2643270.1)

Last updated on MARCH 06, 2023

Applies to:

Oracle WebLogic Server - Version and later
Information in this document applies to any platform.


WebLogic Server includes a Password Validation provider, which is configured by default in each security realm. The Password Validation provider manages and enforces a set of configurable password composition rules, and is automatically invoked by a supported authentication provider whenever a password is created or updated for a user in the realm. When invoked, the Password Validation provider performs a check to determine whether the password meets the criteria established by the composition rules. The password is then accepted or rejected as appropriate.

This document provides details on whether weblogic has any password policy that can restrict a user from using the previous three used passwords when configuring a user or resetting the password for the same.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.