Security :: Authenticating Oracle User Based On Windows User ID?

Mar 11, 2011

We are trying to implement the following security to our database.

As of now, the access rights are same for all the windows users logging into the Oracle application with the same Oracle user Id.

But now, we want to improve our security by granting different levels of rights to the users based on their Network Id even though they use the same Oracle User Id to log into the application.

We are not looking for the users to be identified externally.


View 3 Replies


Security :: Wallet For Each Windows (service) User

Apr 4, 2013

Is there a way to have separate wallets for each windows user? Well, I have found a way, but does not seem to work always properly and that is with %USERNAME% environment variable.

This is how our customer want's to have - so separate wallet for each windows user, how to accomplish this without using %USERNAME%?

View 2 Replies View Related

Security :: Windows OS Authentication Fails ORA-1017 After Renaming AD User

Jul 17, 2012

When a user is renamed in Active Directory, they can no longer connect to the Oracle DB thru OS authentication. There is no OID/DIP integration.

AD User CALRENATOH can connect to DB as 'sqlplus /'

But after renaming AD User CALRENATOH to CALRENATOH1 and dropping DB user CALRENATOH and creating DB user CALRENATOH1 drop user "CALRENATOH"; create user "CALRENATOH1" IDENTIFIED EXTERNALLY;

Now OS authentication 'sqlplus /' fails 'ORA-01017: invalid username/password; logon denied'..Once I recreate the DB user with old AD user name 'CALRENATOH', OS authentication succeeds. create user "CALRENATOH" IDENTIFIED EXTERNALLY;

C:Windowssystem32>set username
C:Windowssystem32>sqlplus /@rmlab001
SQL*Plus: Release - Production on Tue Jul 3 15:16:46 2012
Copyright (c) 1982, 2007, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition Release - 64bit Production
With the Partitioning and OLAP options

Why the Database is still looking for old AD user name? Does Oracle cache information about OS authenticated users?

View 0 Replies View Related

Security :: User Locked / Track User Who Hit Wrong Password

Dec 21, 2010

We have the database user called c88888 and is locked yesterday. I came to this with the following query.

select * from dba_users where username like 'C88888';

Due to invalid password the user was locked. Can we track who hit the database with the wrong password?

View 5 Replies View Related

Security :: User Should Be Able To Read All The Objects Of User?

Sep 12, 2011

User A contains tables, views, LOB's, types, procedures, triggers, sequences, indexes, synonyms. User B wants to have read-only privilege on the objects of User A.

I can provide select on privilege on tables and views. How about providing read-only privileges to other objects?

View 1 Replies View Related

Security :: To See Any Database For The Operations Of Sys User Or Any Other User

Aug 23, 2011

I have enabled Auditing in my oracle Database but I am not able to see any database for the operations of sys user or any other user in my "SYS.AUD$" and "SYS.FGA_LOG$" tables.

Value for the parameter "AUDIT_TRAIL" is set to "db,extended".

I am working as "SYS" user and I have shutdown and again startup the database but neither there was any information in both the tables nor I can see any files at the destination specified by "AUDIT_FILE_DEST".

View 10 Replies View Related

Security :: Schema Consolidation And User Schema Mapping Based On Service

Jul 24, 2011

We have an application with many separate databases (one per customer). Given they share the same business requirements (service hours, change mgmt etc), we're interested in potentially consolidating the separate DBs (which are relatively small) into separate schemas within a fewer no of databases to reduce the overhead.

Our issue is that the application is hard-coded to use a specific administrator and application connection user name. Changing this is unfortunately not an option.

Given this limitation, is there any possibility to map a generic user into a customer-specific schema based on the database service that they connect to? Each customer connects to different database services but may use the same user name. We considered using private synonyms but this seems to acheive the opposite (i.e. many different users could connect and map to a single users schema). One thing to point out is that where there is a single user name, it is acceptable for a single password to be used across the different customer DBs as they will be a single admin/user.

View 5 Replies View Related

Security :: Accounting - Cause Of Oracle User Being Locked

Oct 23, 2012

An Oracle user account got locked, how do I check, which program or session was the cause for it? how to fetch this details along with details like timestamp, ip address, program name.

Wanted to know for Oracle 11 version running on Solaris machine.

View 2 Replies View Related

Security :: How To Find User And IP Address From Oracle Database

Jun 19, 2013

Last week we have realized that a user who connects through SQL Developer(as nothing wrong found in application server logs) has made a serious change in the database which created a real mess. The user has done some mischief in some calculations by making some inserts and updates in some important tables in our production database.

How can I find which user or from which IP the change is made.

View 6 Replies View Related

Security :: Lock User Accounts In Oracle Database

Jul 12, 2011

I have a doubt in locking user account in oracle database.I was told to drop some unusable users in database which my clients dont require them.I verified the dependent objects of those users but not sure if these users can be dropped.

Instead can i make those user accounts locked so that they cannot connect to database? Would there be any impact on database performance if i lock those user accounts?

Is locking an account and dropping users is similar in anyway?

View 12 Replies View Related

Security :: Provide Read / Write Access To Oracle User?

Jun 2, 2011

I will have to provide read/write access to an oracle user. What privileges should i grant to the user so as to enable the user to read from and write to the files?

View 2 Replies View Related

Windows :: Which User Is MANDATORY To Use When Installing Oracle Patches

Nov 22, 2010

We have almost 400 production two-node RAC clusters in the environment I manage - all these sites have databases where the database name is exactly the same, so using Grid Control right now isn't in the cards (and yes - I am working on assigning them all a unique name ). We want to use IBM's BIGFIX to deploy patch 32 on top of for Windows Itanium. BigFix runs as a user different from that used to install the Oracle software originally. There is nothing in the patch notes to suggest that you must use a certain Windows user to install the patch - so the question is, does it matter what Windows User I use as long as they are an 'Administrator' equivalent?

how do you perform mass updates/patches in your Windows server environments? I am looking for examples outside of Grid Control - which I know would work if only my predecessor didn't name these databases the same .

View 6 Replies View Related

Windows / .NET :: Oracle ODBC As User Works But Fails As SYS

Feb 1, 2013

Windows 7
Oracle XE 11gR2

From Windows, I can successfully create and connect with a system data source using an user Oracle account.But when doing then same configuration process I can not create or connect using the 'SYS' account.

i get the error 'ORA-2009: connection as SYS should be as SYSDBA or SYSOPER'.

What is the solution to creating an ODBC DSN for the user 'SYS'?

View 6 Replies View Related

OS User Occupying Shared Memory As Oracle User

Dec 11, 2012

we are trying ti implement BMC monitoring tool for our oracle 11g2 RAC/solaris10 environment. for the purpose we create a user called bmcuser in OS level, this user connecting database to monitor, this user occupy shared memory as oracle. Explain why this user taking that much shared memory just to connect database using sqlplus.

oracle taking 55% bmcuser taking 44%,

SQL> show parameters memory

------------------------------------ ----------- ------------------------------
hi_shared_memory_address integer 0
memory_max_target big integer 3232M
memory_target big integer 3232M
shared_memory_address integer 0
SQL> show parameters sga

------------------------------------ ----------- ------------------------------
lock_sga boolean FALSE
pre_page_sga boolean FALSE
sga_max_size big integer 3232M
sga_target big integer 0
6449 bmcuser 47M 44M sleep 23 10 0:57:31 0.2% PatrolAgent/1

pga & uga usage sessionwise

252     (null)     oracle (ARC3)     racdev1.     31054584     32168696     181056     181056
227     (null)     oracle (ARC2)     racdev1.     31054584     32168696     181056     181056
177     (null)     oracle (ARC0)     racdev1.     31054584     32168696     181056     181056
576     (null)     oracle (LGWR)     racdev1.     16693544     21281064     181056     181056
326     (null)     oracle (LMS0)     racdev1.     13753080     13753080     181056     181056
376     (null)     oracle (LMS2)     racdev1.     13556472     13556472     181056     181056

View 6 Replies View Related

Security :: Tracking User Security Violations

Jul 27, 2010

Provide me the script which would track all the users security violations like ... say for example i want to find which users logged in and what he did in database prospective.

View 1 Replies View Related

Security :: Limit Sessions Per User In RAC

May 6, 2011

The following link states

Each instance maintains its own SESSIONS_PER_USER count. If SESSIONS_PER_USER is set to 1 for a user, the user can log on to the database more than once as long as each connection is from a different instance.


Of course the following is not working even when resource_limit is TRUE


How can I restrict a user to have limited sessions say 2 sessions across 4 node cluster? Presently I am checking the sessions logged in using sql+ and no connection pooling of front end etc. is involved.

View 5 Replies View Related

Security :: User Password Expired?

Nov 11, 2011

i am using a oracle server. And all my users password has been expired, is there any way to recover those users without failing my data.

View 19 Replies View Related

Security :: OID Create User Error

Aug 23, 2010

I am using Oracle Internet Directory to store user information and OID delegation administratibe services for user entry. An an admin I created a privileges group called admins. Users belonging to this group can create user, delete users, edit users, and edit groups. I created 'User A' and assigned him to the group. Now 'User A' creates 'User B' and assignes him to the group. However when 'User B' creates 'User C' he gets the error [LDAP: error code 50 - Insufficient Access Rights].

This happens even though 'User B' belongs to the admin group which has the privilege to create users.

View 1 Replies View Related

Security :: Restricting User Access?

Oct 17, 2010

The application user owns the application schema which owns all the database objects in this schema. Now 50 of our developers need access to this application schema but giving away the password for the application user is risk as "Drop user application cascade" and wipe off all the objects. The option i have is to create 50 separate users with tablespace as application and grant all rights to application schema.

View 9 Replies View Related

Security :: How To Create User Under Schema

Dec 5, 2012

To make users under one schema.

1) user should have access of all objects with limited privileges.

How can i make it under schema?

View 3 Replies View Related

Security :: History Of Privileges Changes Done For A DB User

Jan 1, 2013

As how do I query, as when was the last time or rather list of privileges changes done for a db user and what was the changes made?

View 1 Replies View Related

Security :: Grant Privileges To A User?

Dec 10, 2010

I am a java developer and would like to install data locally in my computer for testing purpose.

I login as sysdba in sqlplus, created a user.

In the installation documentation it said :

This user should have at least the following privileges.


If you choose, you can grant DBA role to this user.

Note: Coeus Schema owner should have CREATE USER and ALTER USER right explicitly granted to it, not through a role like DBA.

1)How to grant all this prvileges to that user ?

2)How this user will have CREATE USER and ALTER USER right explicitly granted to it, not through a role like DBA ?

View 5 Replies View Related

Security :: How To Know What Object Privilege A User Have

Nov 13, 2013

How to know what object/tab privileged a user have ? without connecting that user and using USER_TAB_PRIVS by connecting on that user I mean on DBA table .

View 0 Replies View Related

Security :: To Find Out Which Row Locked By Particular User

May 14, 2011

If the user has locked some row in the database how to find out the row id or the row which is locked by that particular USER.

View 2 Replies View Related

Security :: SQLs To Monitor User Access?

Jul 2, 2011

There is a user account called 'BALA'.How to create SQLs to monitor 'BALA' user access ?

View 9 Replies View Related

Security :: Create User With Non Expiring Password

Jul 7, 2011

I want to create oracle user with non expiring password or i want to create one oracle user and set the password as non expiring.

View 9 Replies View Related

Security :: Integrating LDAP For User Authentication

Jan 24, 2013

We like to integrate the window LDAP to a new oracle database for user authentication. For example, this is a new test database and we don't have any users created.Now we like to figure out if we created the users with same id as in LDAP userid, how they can be authenticated externally by LDAP. I read and heard some info on OID provided by oracle but need some more step by step info to experiment.

View 3 Replies View Related

Security :: How To Find Current User In Database

Sep 22, 2011

query to find the current user accessing the database

View 5 Replies View Related

Security :: How To Generate User And Password Manually

Aug 27, 2012

i forget my system password and i can't login to my database,and its not letting me in as sys/manager as to generate new user and password....

View 13 Replies View Related

Security :: How To Configure End User Open Only One Session

Jun 10, 2011

I want to configure this

my end user open only one session

means one session per one user only

View 8 Replies View Related

Copyrights 2005-15, All rights reserved