RE: AIX 10g/11 and Oracle DBA logins

All of the DBAs here know the Oracle OS login password. We log into the system with our user id and the su to the oracle user. Since you don't have that many DBAs, I wouldn't be concerned about security issues.

William

-----Original Message-----

From: oracle-l-bounce_at_freelists.org
[mailto:oracle-l-bounce_at_freelists.org] On Behalf Of DIANNA GIBBS Sent: Monday, June 16, 2008 3:49 PM
To: oracle-l_at_freelists.org
Subject: AIX 10g/11 and Oracle DBA logins

We are moving all of our instances to AIX from Windows and VMS.

Since I have been the only DBA on the new AIX servers, I have been using the oracle OS user login. Now that we are moving into production, we have several DBAs and would like all of us to log in using our specific username and su to oracle user or be able to do anything needed as if we were the
oracle user. We are currently able to do this on Windows and VMS.

My AIX administrator tells me this cannot be done without everyone knowing the oracle OS user password.

Is there any other way we can do this without everyone knowing the oracle OS password? Or am I missing something and being too cautious? Can we not use sudo or something like this? Or is SU and SUDO the same thing? I've googled and searched but have found nothing regarding best practices or what other sites are doing. And if everyone has to know the Oracle OS password, what keeps people from just logging in as Oracle?

Any direction or information appreciated. Thanks!
Dianna G.

--

http://www.freelists.org/webpage/oracle-l

--

http://www.freelists.org/webpage/oracle-l Received on Mon Jun 16 2008 - 15:59:47 CDT