DROP PASSWORD POLICY¶

Removes a password policy from the system.

See also:

Managing password policies

Syntax¶

DROP PASSWORD POLICY [ IF EXISTS ] <name>
Copy

Parameters¶

name

Identifier for the password policy; must be unique for your account.

The identifier value must start with an alphabetic character and cannot contain spaces or special characters unless the entire identifier string is enclosed in double quotes (e.g. "My object"). Identifiers enclosed in double quotes are also case-sensitive.

For more details, see Identifier requirements.

Access control requirements¶

A role used to execute this SQL command must have the following privileges at a minimum:

Privilege

Object

Notes

OWNERSHIP

Password policy

OWNERSHIP is a special privilege on an object that is automatically granted to the role that created the object, but can also be transferred using the GRANT OWNERSHIP command to a different role by the owning role (or any role with the MANAGE GRANTS privilege).

The USAGE privilege on the parent database and schema are required to perform operations on any object in a schema.

For instructions on creating a custom role with a specified set of privileges, see Creating custom roles.

For general information about roles and privilege grants for performing SQL actions on securable objects, see Overview of Access Control.

For additional details on password policy DDL and privileges, see Managing password policies.

Usage notes¶

  • Prior to dropping a password policy, execute the following statement to determine if any password policies are applied to the account or users in the account. For more information, see POLICY_REFERENCES.

    SELECT * from table(information_schema.policy_references(policy_name=>'<string>'));
    
    Copy
  • A password policy cannot be dropped successfully if it is currently attached to an account or user. Before executing a DROP statement, UNSET the password policy from the account with an ALTER ACCOUNT statement or unset the password policy from a user with an ALTER USER statement.

Example¶

Drop a password policy:

DROP PASSWORD POLICY password_policy_production_1;
Copy