Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: SYSDBA, SYSOPER question.

Re: SYSDBA, SYSOPER question.

From: m.mueller <m.mueller_at_snafu.de>
Date: Fri, 24 Aug 2001 11:27:15 +0200
Message-ID: <3B861DF3.FF4A2C6D@snafu.de> 





>I am studying for my DBA test and I was going through OLN's

>discussion on Operating System authenticated users (for administration).

>In the practice session it said to create a user with "create user ....

>identified externally".  Next, it said to grant the user SYSDBA and SYSOPER

>while in SQL*Plus.  I tried it and it didn't work:  the error said that it

>can't do that, because it is identified externally.  Am I not seeing something

>here, or is Oracle sometimes wrong in their documentation and tutorials?

>

>Thomas P. Otten




Hello Thomas,


created a test user on LINUX RH 7.1, Oracle 8.1.7:

SQL> @rc_user3.sql
DOC>create a user that must be authenticated by OS.
DOC>root tasks: useradd lin_auth
DOC>            passwd lin_auth
DOC>            user belongs to group dba, edit /etc/group:      ... xfs:x:43:
DOC>                                                                
oracle_2:x:501:502
DOC>                                                                
oinstall:x:501:
DOC>                            each user is seperated by comma --->
dba:x:502:lin_auth,ops_auth
DOC>             PRIMARY GROUP IS 1001, SECONDARY GROUP 502 (dba)-->


lin_auth:x:1001:

DOC>oracle_2 tasks: edit initsummer.ora,  parameter OS_AUTHENT_PREFIX=OPS$
DOC>                create db user (name must be ops$lin_auth)
DOC>                       CREATE USER ops$lin_auth IDENTIFIED EXTERNALLY;
DOC>                grant create session to ops$lin_auth;
DOC>user lin_auth normally logs in to LINUX login: sqlplus /
DOC>(Oracle checks,if db user ops$lin_auth exists. if yes, user is logged in to


sqlplus)

DOC>*/
DOC>create user: CREATE USER ops$lin_auth IDENTIFIED EXTERNALLY;
DOC>*/
 




User created.
 


DOC>grant user the sysdba role: grant dba to ops$lin_auth;
DOC>*/

 
Grant succeeded.
 


DOC>check names of roles (OS dependent !!! That may be your problem !): select
role from dba_roles;


DOC>*/

 
ROLE





CONNECT



RESOURCE



DBA <-- Note: rolename is DBA not SYSDBA
...


15 rows selected.
 


DOC>revoke dba role from user ops$lin_auth: revoke dba from ops$lin_auth;
DOC>*/

 
Revoke succeeded.
 


SQL>


for more information visit


http://technet.oracle.com/doc/server.815/a67772/dba.htm#1135
Hope that helps


Manuela Mueller
Received on Fri Aug 24 2001 - 04:27:15 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US