Security :: Unable To Logon As Sysdba?
Mar 3, 2005
I am working on oracle 9.0.1 version on XP.
Here I am unable to log as sysdba
I am doing like this
d:sqlplus /nolog
sql>conn /as sysdba
not working,giving an error then i tried
sql>conn sys as sysdba
again same error :_ insufficent Priv..
where as sql> conn system/manager working
View 21 Replies
ADVERTISEMENT
Apr 24, 2012
is it possible to login as SYSDBA in oracle forms from normal logon procedure?
logon(sys_acc, sys_pwd||'@'||:GLOBAL.db_conn);
The reason behind this is to make a form which will alter user's password. But all the users are in SYS account and it is necessary to login as SYSDBA in forms to execute alter statement.
View 4 Replies
View Related
Jul 30, 2010
getting logon timestamp for our auditing process. In some website, it says to get the logon timestamp I have to select it from timestamp column of dba_audit_session but when I do this, some results has a logoff earlier than logon. Is timestamp column really the logon timestamp?
SELECT
returncode,
(logoff_time-timestamp) timeonline,
TO_CHAR(timestamp, 'DD-MON-YYYY HH24:MI:SS') LOGON_TIME,
TO_CHAR(logoff_time, 'DD-MON-YYYY HH24:MI:SS') LOGOFF_TIME,
action_name
FROM dba_audit_session;
[code]....
View 2 Replies
View Related
Jul 2, 2011
I am not able to login in the database with sys user. when i am trying with sqlplus "/as sysdba" it is showing
ERROR: ORA-01031: insufficient privileges.
& when i am trying with sqlplus sys as sysdba it is showing
ERROR:ORA-01017: invalid username/password; logon denied.
I login with system user and changed the password of sys nd then tried login with sys but same result.
remote_login_passwordfile is set to NONE nd i am login through that user only by which i was always able to login.
View 23 Replies
View Related
Sep 24, 2013
I have a log-in problem. I created the new database and when I try to log-in with system user, its giving ORA-01017: invalid username/password; log-in denied, and when I try to log-in with "/ as sysdba" its successfully logged in.
When I try to change SYSTEM user password, I successful change and connecting and after few seconds when I try to connect its again giving same error "ORA-01017: invalid username/password; log-in denied
And I disable the case sensitive password also:
sec_case_sensitive_logon boolean FALSE
OS: windows
Oracle Versions: 11.2.0.1.0
View 6 Replies
View Related
Jun 18, 2013
my listener getting started and database also up
but gives error
Connecting as SAPSR3/<pwd>@ECC on connection 0 (nls_hdl 0)
Logon as OPS$-user to get SAPSR3's password
If can share screen shots are some link so i can go aehad
what is the default password for SYSTEM
View 1 Replies
View Related
Dec 14, 2011
We have a production database on 11.2.0.2 version. The application user was prompted to change the password after his password expired.
USERID NTIMESTAMP# ACTION# RETURNCODE
------------------------------ --------------------------------------------------------------------------- ---------- ----------
M500796 13-DEC-11 06.11.06.065209 PM 100 28001
After changing the password he is not able to logon. The aud$ table does not show any occurrence of 1017, therefore it is not a question of Invalid password.
LVV> show parameter SEC_CASE_SENSITIVE_LOGON
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
sec_case_sensitive_logon boolean FALSE
View 2 Replies
View Related
Aug 23, 2010
We have enable the alter log for audit purpose so the password will be display in the log which is not security. I try to use "password" to change password but very user got the error below.
SQL> password
Changing password for RUDEE
Old password:
New password:
Retype new password:
ERROR:
ORA-00604: error occurred at recursive SQL level 1
ORA-20014: -6502 ORA-06502: PL/SQL: numeric or value error
ORA-06512: at line 27
Password unchanged
View 17 Replies
View Related
Sep 9, 2011
I have one schema argus_app where there is a table cfg_enterprise. There is a view v$cfg_enterprisewhich selects data from cfg_enterprise and there is apublic synonym cfg_enterprise for v$cfg_enterprise.
When I login to argus_app and select from cfg_enterprise there is no data where as i log in to sys and select I can see data.
SQL> conn /as sysdba
Connected.
SQL> select enterprise_name from cfg_enterprise;
ENTERPRISE_NAME
[code]...
what would be creating this problem.
View 5 Replies
View Related
May 18, 2010
I got ORA-12528 while i was connecting sys as sysdba from remote machine to theinstance which is started in nomount mode. Although tnsping for that instance is working.
View 2 Replies
View Related
Mar 2, 2010
A function returns the metadata of named objects (Directories, Users, Tablespace....) in the form of DDL. When i execute the function in the schema having the privileges of CONNECT, RESOURCE, DBA, SELECT ANY TABLE, UNDER ANY VIEW AND EXECUTE ANY PROCEDURE, function returns the empty clob without any error. But he same function created and executed in the User having SYSDBA privilege, we get output.how to get output without SYSDBA privilege ?
CREATE OR REPLACE FUNCTION SCHEMA.DBLINK
RETURN CLOB
AS
v_meta_handle NUMBER;
v_meta_handle_trans NUMBER;
V_DOC CLOB;
V_LOB CLOB;
[code]....
View 7 Replies
View Related
Apr 29, 2013
how to restrict sqlplus as sysdba
C:> Set Oracle_sid=Mydb
C:>sqlplus / as sysdba
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.1.0
I don't want to log in any one as sqlplus / as sysdba.If they can able to login as sqlplus / as sysdba then they can see others schema in the database.Say if i set
SQLNET.AUTHENTICATION_SERVICES=none
no one can log in as sysdba were as later some one changes to
SQLNET.AUTHENTICATION_SERVICES=NTS
After they changes to NTS they can log in and access other user details right ? how to restrict
Oracle version: Oracle 11 g
OS Version :Win 7
View 21 Replies
View Related
Sep 7, 2013
"C:UsersKarthikeyan>sqlplus / as sysdba SQL*Plus: Release 12.1.0.1.0 Production on Sat Sep 7 17:42:37 2013 Copyright (c) 1982, 2013, Oracle. All rights reserved. ERROR:ORA-12560: TNS:protocol adapter error Enter user-name:"
this is the first time i tried to open sql*plus and i didn't create any database connection before....so i don't have any username and password.......
View 20 Replies
View Related
Feb 15, 2012
I have a problem with a PCI DSS - requirement in Oracle 11.2. (PCI DSS = Payment Card Industry Data Security Standard)
Problem:
we connect via ' ssh -2 -X -l oracle hostname ' to the databaseserver and become os-user 'oracle'. we have also two offshore locations with dba's and each dba comes with his personalized user to the jumphost and then with the above ssh command to the database server.
the problem is that each dba becomes the oracle-os-account and can now connect with '/ as sysdba' to the database.in pci-dss this is not allowed !
now my question:how can I audit these '/ as sysdba'-connections and prove which user connected at which time with the '/ as sysdba' command ?
database is in audit mode. we log to syslog on linus redhat 5. I know one solution could be setting "SQLNET.AUTHENTICATION_SERVICES" parameter to "NONE" in sqlnet.ora file will make it not possible to connect to the database without a password as sysdba. (sqlplus / as sysdba). but we have to many applications and jobs and this is not really the solution in this case.
I think I can only solve this problem with personalized OS-user DBA-accounts in the dba-goup on os-site and os-user oracle should not be used for the future ?? I also need personalized dba-user-accounts in the database. using sys and system is not allowed. this users has to be locked and only for special administration work could it be unlocked.
View 3 Replies
View Related
Mar 13, 2013
I am in a bit confusion about the user when we are logging in to sqlplus /as sysdba. what the user is when we are into sqlplus with sqlplus /as sysdba.
View 3 Replies
View Related
Oct 8, 2010
I grant sysdba privilege to user1. After that i connected with user1. But i could not shutdown the database.
View 3 Replies
View Related
Feb 8, 2009
I used the following command :
-------------------------------------------------
D:oracleproduct10.1.0Db_2jdk�injava -Djava.security.properties=D:oracleproduct10.1.0Db_2sqlplusadminiplusprovider -jar D:oracleproduct10.1.0Db_2oc4jj2eehomejazn.jar -user "iSQL*Plus DBA/admin" -password welcome -shell
--------------------------------------------------------
Output as follows:
--------------------------------------------
oracle.security.jazn.JAZNRuntimeException: Configuration file "configjazn.xml" does not exist. Check your JAAS configuration settings.at oracle.security.jazn.JAZNConfig.getJAZNProperties(Unknown Source)
... ... ...
Realm [iSQL*Plus DBA] does not exist in system.
-----------------------------------------------
what may be the reason for this error?
View 8 Replies
View Related
Apr 8, 2013
I have a problem with my Oracle istance and so far I couldn't fix it, I have and Oracle 11g XE istance running on windows server 2003.A couple of days ago I received the error message "ORA-00257: archiver error".I found tips in this forum and wanted to apply but sqlplus doesn't recognize my SYS user/password. I type the correct password but no chance to log in.
If I try to connect using a client like Toad, I receive the message ORA-12170: TNS:Connect timeout occurred. I checked the firewall rules, but it's ok, moreover I was logging in in the past and any change has been performed on it. I learned it's possible to change SYS password.
If I connect as "/ as sysdba" on sqlplus I read "Connected to an idle istance".In order to connect as "/" I had to update sqlnet.ora and restart the service. The parameter SQLNET.AUTHENTICATION_SERVICES
was set as NONE ad I set as NTS. I should probably have to set it as ALL? I found out the orapwd utility to change SYS password throught password file for remote login as sysdba.
I tried to create that file, and when I ran the command it asked me the SYS password, I typed it and it created the file, so I guess the password I type is correct (I had the question to type it wrong). I didn't go to the next step as I wasn't sure to make the right thing and I don't want to make this issue bigger.
As long as I can't log in as sysdba I can't perform the actions mentioned in tips to fix the error 257, but I'm also wondering if the archive error can have a side effect and deny the action of update the SYS password.
View 2 Replies
View Related
Apr 2, 2013
SQL> conn sys as sysdba
Enter password:
ERROR:
ORA-01031: insufficient privileges
The oracle 11g installed in eucalyptus cloud..
In the same server I can connect as a different user 'd6' but not as sysdba.
View 7 Replies
View Related
Jun 21, 2013
I try to login as SYS@sid AS SYSDBA When I login via TOAD, I am able to. However, as in (1), all my attempts to login from command-line SQL *Plus fails. The error I get is ORA-1031 Insufficient Privileges Even if I am on the physical server and try to run the SQL *Plus, I get the same error -- Insufficient Privileges
Here are the environment details:
Server: Windows Server 2008 R2
Server: Oracle Database 11g Enterprise Edition Release 11.2.0.1.0
Client: Windows 7 Professional
Client: SQL*Plus: Release 11.2.0.1.0 Production
View 2 Replies
View Related
May 9, 2011
There is a xxxxx.sql file in the OS level which contains create or replace trigger script. I modified that file with the code below:
if(upper(USER)= 'U_USER') then
execute immediate 'alter session set current_schema=USER';
end if;
after that, I went to sqlplus
and logged in to U_USER like this
SQL>conn U_USER/U_USER;
connected.
SQL>@xxxxx
some numbers are getting generated if i press enter.
Then i press ctrl +c and get to sql prompt.
I issue
SQL>select SYS_CONTEXT('USERENV','CURRENT_SCHEMA') FROM DUAL;
I am getting the output as U_USER but I must get the output as USER and not as U_USER. Basically the trigger is not getting updated.
View 1 Replies
View Related
Oct 27, 2010
I want to host name and max logon day from the below query But host name not belongs to start with 'IRS%' and 'EMEAUKIMIV00023828'.
My question is How to handle the backslash in oracle 8i and also check the below query is ok or not,
select host, max(logon_day) from (
select host,logon_day from system.stats$user_log
where host not like 'IRS%'
AND not in ('EMEAUKIMIV00023828'))
group by host;
View 10 Replies
View Related
Jun 20, 2012
I'm looking to create an after logon trigger... my question is - can this trigger be created by any user (i.e. other than sys) and - if so - what's required to ensure it fires for EVERY other user that log's on to the database?
View 2 Replies
View Related
Dec 26, 2012
Any documentation supporting Oracle 11G and Advanced Security stating encryption at rest is FIPS 140-2 compliant?
View 3 Replies
View Related
Nov 16, 2010
Lost Windows password? Forgot Windows password? Your PC was hacked? Therefore, it is a basic step for every Windows users to enhance the security of Windows password. In the networks, it is found that a number of user's passwords are easy to guess. Only the smallest groups are the most security conscious and select passwords that are mixed lowercase and uppercase letters, numbers and punctuation to create cryptic passwords. Adopting strong password is one of the most effective ways to ensure system security. Here are several methods for you to enhance the security of your passwords in Windows 7/2000/XP/Vista and so on. You'd better remember the methods below unless you want to reset Windows password from time to time.
1. Is random password a great password?
A common myth is that totally random passwords like Ht3&e#L%5d@$B are the best passwords. This is not true. While they may be strong passwords, they are usually difficult to remember, slow to type, and sometimes vulnerable to attacks against the password generating algorithm. It is easy to create passwords that are strong but much easier to remember by using a few simple techniques. For example, consider the password "Luck-73@Better?". This password utilizes uppercase and lowercase letters, two numbers, and three symbols. The password is 15 characters long and can be memorized with very little effort. Moreover, this password can be typed very fast. The portion"Luck" and "Better" alternate between left and right-handed keys on the keyboard, improving speed, decreasing typos, and decreasing the chances of someone being able to discover your password by watching you.
2. Create the long Windows password
Although a password may eventually be discovered through some means, it is possible to create a password that cannot be cracked in any reasonable time. If a password is long enough, it will take so long or require so much processing power to crack it. That is essentially the same as being unbreakable (at least for most hackers).
3. Create the Windows password constantly?
This may be good advice for some high-risk passwords, but it is not the best policy for every user. It is frustrating for a user to have to constantly think of and remember new passwords every 30 days. It may be better to focus on stronger passwords and better user awareness rather than limiting password age. A more realistic time for the common user may be 90-120 days.
4. Write down Windows password in a proper place
Sometimes it is necessary for some users losing and forgetting complex passwords easily to write down them somewhere proper. However, it is important to educate users on how to write down passwords properly. Obviously, a sticky note on the monitor is not a good idea, but storing passwords in a safe or even a locked cabinet may be sufficient.
5. 14 characters is the optimal password length
Each character that you add to your password increases the protection. Your passwords should be 8 or more characters in length; 14 characters or longer is the Optimal Password Length. Many systems also support use of the space bar in passwords, so you can create a phrase made of many words. It is not easier to forget and lose, as well as longer than a simple password, and harder to guess.
6. Try not to use the same Windows password for all accounts
Some users always make the same passwords for every account to make it easy to remember. In that case, when any one of them lost, your other information protected by that password will be in danger as well. It is serious to use different passwords for different systems and accounts.
7. Do not use some common words that other users maybe guess
Most of users prefer to use some common words to remember easily, for example, login name, birth date, driver's license, passport number, pets' name and other words contained their personal information someone knows. In that case, your Windows system will not be safe anymore. Moreover, do remember not to use some words spelled backwards, abbreviations, sequences or repeated characters and adjacent letters, such as, asdfgh, 123456, 888888, abcdef and so on.
You can smoothly use your Windows now because the strong and powerful Windows password is created successfully, Certainly, I believe that many users lost Windows password and forgot Windows password, then you need have to reset Windows password or recover Windows password. It is a big problem for plenty of Windows users that how to reset Windows password. how to recover Windows password and they are puzzled by resetting windows password, for instance, reset Windows 7 password, recover password Windows XP, remove Windows Vista password and other operating systems after they create the password with complex letters, numbers and symbols. However, it is unnecessary to worry and it is said that things will eventually sort themselves out. There are many ways to reset forgotten Windows password, including use windows password reset disk and windows password reset software, like Super Windows Password Reset, a professional windows password reset software which could enable you to logon to Windows smoothly without reinstalling system.
View 1 Replies
View Related
Mar 21, 2011
i installed Oracle 11.2.0 64bit & Oracle SQL developer 2.1.1.64 on Windows-7 64bit
i try to connect to database like this:
username: scott
password: tiger
role : sysdba
hostname: localhost
port : 1521
sid : ORCL
and i got this error: `ora-01017 invalid username/password; logon denied`
View 3 Replies
View Related
Feb 3, 2012
I am developing menu.. in that menu having 5 different forms.. these forms are 3 one schema ( i.e X ) and remaining 2 forms are one schema ( i.e Y )..
i am calling x schema
form level trigger on_logoon :
onlogon('a','a@X');
a for Username and x database name and another form in form level trigger on_logon : coding
logout;
logon('b','b@Y');
b for Username and y database name
but the form is not executing and not saving the record's.
View 1 Replies
View Related
Aug 4, 2011
How to grep client's IP address when LOGON to database? I write a trigger , but when compile , it show Error , Here is code :
CREATE OR REPLACE TRIGGER On_Logon
AFTER LOGON ON The_user.Schema
DECLARE
v_addr VARCHAR2(11);
BEGIN
IF (ora_sysevent = 'LOGON') THEN
v_addr := ora_client_ip_address;
raise_application_error( '-20001', 'user IP: '||v_addr);
END IF;
END;
[code]....
View 13 Replies
View Related
Apr 28, 2011
i would like to trace some connexions on database, once compile the code , i have the issus following:
10/2 PL/SQL: SQL Statement ignored
11/20 PL/SQL: ORA-00942: table or view does not exist
this is the
DROP TABLE connect_user;
CREATE TABLE connect_user
(
nom_ora varchar2(15),
naom_os varchar2(15),
programme varchar2(20),
poste varchar2(20),
[code]...
View 3 Replies
View Related
Aug 18, 2010
In Sybase, my application was using system tables to perform application login security. Those tables obviously don't exist in Oracle. I am looking for ways to provide the following functionality in an Oracle world:
1. How to determine 'x' days of inactivity based on "last login date"?
2. How to determine when a new user logs in for the first time and force them to change their password?
3. If we need to reset a users password, how can we require the user to change their password?
4. Is there any other option other than storing a user-id/password in the application code for locking a user's account if their account needs to be locked due to inactivity?
5. In the USER_USERS view there is a status column. What the different status's can be?
View 3 Replies
View Related
