Re: Question - Standby databases: can I change passwords?

On 23 May 2006 10:16:00 -0700, "BD" <bobby_dread_at_hotmail.com> wrote:

>Hey, all.
>
>I have a standby database running under 8.1.7.4 on AIX 5.2.
>
>I know that this is a block-level copy of its master db, and I am quite
>sure the most access I can gain to it is read only access when it's in
>read only mode.
>
>But a concern has been expressed that credentials of the standby are
>going to be the same as its master: so someone who has been given a
>read only ID to the standby for reporting purposes can also log into
>the production database. Which is what I want to prevent.
>

How would an account set up on the standby database replicate to the production? By magic?

>I can enable shell scripts to punt errant sessions based on their login
>ID, but this doesn't actually _stop_ someone from logging into the
>production database once they have credentials to the reporting
>standby.

That would be a crap solution if you can set up an after-logon trigger easily.

>
>Just thought I'd see if there were any tricks people knew of to deal
>with this aside from forcing a tnsnames file on the client
>workstations, killing sessions from the OS level, etc...
>
>Thanks for all suggestions!!
>
>BD

--
Sybrand Bakker, Senior Oracle DBA