---
title: "Changing Passwords Programmatically | Microsoft Docs"
description: "Changing passwords programmatically using OLE DB Driver for SQL Server"
ms.custom: ""
ms.date: "06/12/2018"
ms.prod: sql
ms.prod_service: "database-engine, sql-database, sql-data-warehouse, pdw"
ms.reviewer: ""
ms.technology: connectivity
ms.topic: "reference"
helpviewer_keywords: 
  - "data access [OLE DB Driver for SQL Server], password expiration"
  - "OLE DB Driver for SQL Server, passwords"
  - "passwords [SQL Server], expiration"
  - "MSOLEDBSQL, password expiration"
  - "expiration [OLE DB Driver for SQL Server]"
  - "passwords [SQL Server], modifying"
  - "expired passwords [OLE DB Driver for SQL Server]"
  - "OLE DB Driver for SQL Server, password expiration"
  - "modifying passwords"
author: pmasl
ms.author: pelopes
---
# Changing Passwords Programmatically
[!INCLUDE[appliesto-ss-asdb-asdw-pdw-md](../../../includes/appliesto-ss-asdb-asdw-pdw-md.md)]

[!INCLUDE[Driver_OLEDB_Download](../../../includes/driver_oledb_download.md)]

  Before [!INCLUDE[ssVersion2005](../../../includes/ssversion2005-md.md)], when a user's password expired, only an administrator could reset it. Beginning with [!INCLUDE[ssVersion2005](../../../includes/ssversion2005-md.md)], OLE DB Driver for SQL Server supports handling password expiration programmatically through OLE DB Driver, and through changes to the **SQL Server Login** dialog boxes.  
  
> [!NOTE]  
>  When possible, prompt users to enter their credentials at run time and avoid storing their credentials in a persisted format. If you must persist their credentials, you should encrypt them using the [Win32 crypto API](https://go.microsoft.com/fwlink/?LinkId=64532). For more information about the use of passwords, see [Strong Passwords](../../../relational-databases/security/strong-passwords.md).  
  
## SQL Server Login Error Codes  
 When a connection cannot be made because of authentication problems, one of the following SQL Server error codes will be available to the application to assist diagnosis and recovery.  
  
|SQL Server Error Code|Error Message|  
|---------------------------|-------------------|  
|15113|Login failed for user '%.*ls' Reason: Password validation failed. The account is locked out.|  
|18463|Login failed for user '%.*ls'. Reason: Password change failed. The password cannot be used at this time.|  
|18464|Login failed for user '%.*ls'. Reason: Password change failed. The password does not meet policy requirements because it is too short.|  
|18465|Login failed for user '%.*ls'. Reason: Password change failed. The password does not meet policy requirements because it is too long.|  
|18466|Login failed for user '%.*ls'. Reason: Password change failed. The password does not meet policy requirements because it is not complex enough.|  
|18467|Login failed for user '%.*ls'. Reason: Password change failed. The password does not meet the requirements of the password filter DLL.|  
|18468|Login failed for user '%.*ls'. Reason: Password change failed. An unexpected error occurred during password validation.|  
|18487|Login failed for user '%.*ls'. Reason: The password of the account has expired.|  
|18488|Login failed for user '%.*ls'. Reason: The password of the account must be changed.|  
  
## OLE DB Driver for SQL Server  
 The OLE DB Driver for SQL Server supports password expiration though a user interface and programmatically.  
  
### OLE DB User Interface Password Expiration  
 The OLE DB Driver for SQL Server supports password expiration through changes made to the **SQL Server Login** dialog boxes. If the value of DBPROP_INIT_PROMPT is set to DBPROMPT_NOPROMPT, the initial connection attempt will fail if the password has expired.  
  
 If DBPROP_INIT_PROMPT has been set to any other value, the user sees the **SQL Server Login** dialog, regardless of whether or not the password has expired. The user can click on the **Options** button and check **Change Password** to change the password.  
  
 If the user clicks OK and the password has expired, [!INCLUDE[ssNoVersion](../../../includes/ssnoversion-md.md)] prompts the user to enter and confirm a new password using the **Change SQL Server Password** dialog.  
  
#### OLE DB Prompt Behavior and Locked Accounts  
 Connection attempts may fail due to the account being locked. If this occurs following the display of the **SQL Server Login** dialog, the server error message is displayed to the user and the connection attempt is aborted. It may also occur following the display of the **Change SQL Server Password** dialog if the user enters a bad value for the old password. In this case the same error message is displayed, and the connection attempt is aborted.  
  
#### OLE DB Connection Pooling, Password Expiration, and Locked Accounts  
 An account may be locked or its password may expire while the connection is still active in a connection pool. The server checks for expired passwords and locked accounts on two occasions. The first is when a connection is first created. The second occasion is upon connection reset, when the connection is taken from the pool.  
  
 When the reset attempt fails, the connection is removed from the pool and an error is returned.  
  
### OLE DB Programmatic Password Expiration  
 The OLE DB Driver for SQL Server supports password expiration through the addition of the SSPROP_AUTH_OLD_PASSWORD (type VT_BSTR) property that has been added to the DBPROPSET_SQLSERVERDBINIT property set.  
  
 The existing "Password" property refers to DBPROP_AUTH_PASSWORD and is used to store the new password.  
  
> [!NOTE]  
>  In the connection string, the "Old Password" property sets SSPROP_AUTH_OLD_PASSWORD, which is the current (possibly expired) password that is not available via a provider string property.  
  
 The provider does not persist the value of this property. When this property is set, the provider does not use the connection pool for the first connection because a new connection will occur. If the password change is successful, the current connection cannot be reused since it still contains the old password, which will be invalid after the password change. Also, if the login succeeds, the provider clears this property. Subsequent attempts to retrieve the old password return VT_EMPTY.  
  
> [!NOTE]  
>  SSPROP_AUTH_OLD_PASSWORD should never be persisted since it is only used when a password has expired.  
  
 Note that whenever the "Old Password" property is set, the provider assumes that an attempt to change the password is being made, unless Windows Authentication is also specified, in which case it always takes precedence.  
  
 If Windows Authentication is used, specifying the old password results in either DB_E_ERRORSOCCURRED or DB_S_ERRORSOCCURRED depending on whether the old password was specified as REQUIRED or OPTIONAL respectively, and the status value of DBPROPSTATUS_CONFLICTINGBADVALUE is returned in *dwStatus*. This is detected when **IDBInitialize::Initialize** is called.  
  
 If an attempt to change the password fails unexpectedly, the server returns error code 18468. A standard OLEDB error is returned from the connection attempt.  
  
 For more information about the DBPROPSET_SQLSERVERDBINIT property set, see [Initialization and Authorization Properties](../../oledb/ole-db-data-source-objects/initialization-and-authorization-properties.md).  

  
## See Also  
 [OLE DB Driver for SQL Server Features](../../oledb/features/oledb-driver-for-sql-server-features.md)