Oracle's password file
there must be a way for Oracle to authenticate this DBA. That is if
(s)he is allowed to do so. Obviously, his password can not be stored in
the database, because Oracle can not access the database before the
instance is started up. Therefore, the authentication of the DBA must
happen outside of the database. There are two distinct mechanisms to
authenticate the DBA: using the
password file or through the operating system.
The init parameter remote_login_passwordfile specifies if a password
file is used to authenticate the DBA or not. If it set either to
shared or
exclusive a password file will be used.
Default location and file name
The default location for the password file is:
$ORACLE_HOME/dbs/orapw$ORACLE_SID
on Unix and %ORACLE_HOME%/database/PWD%ORACLE_SID%.ora
on Windows. Deleting a password file
If password file authentication is no longer needed, the password file can be deleted and the init parameter
remote_login_passwordfile set to none.
Password file state
If a password
file is shared or exclusive is also stored in the password file. After
its creation, the state is shared. The state can be changed by setting remote_login_passwordfile and starting the database.
That is, the database overwrites the state in the password file when it is started up.
A password file whose state is shared can only contain SYS.
Creating a password file
Password files are created with the orapwd tool.
Adding Users to the password file
Users are added to the password file when they're granted the SYSDBA or
sysoper privilege.
SYS@ora10> show user;
USER is "SYS"
SYS@ora10> select * from v$pwfile_users;
USERNAME SYSDB SYSOP
------------------------------ ----- -----
SYS TRUE TRUE
SYS@ora10> grant SYSDBA to rene;
Grant succeeded.
SYS@ora10> select * from v$pwfile_users;
USERNAME SYSDB SYSOP
------------------------------ ----- -----
SYS TRUE TRUE
RENE TRUE FALSE
SYS@ora10> grant SYSOPER to rene;
Grant succeeded.
SYS@ora10> select * from v$pwfile_users;
USERNAME SYSDB SYSOP
------------------------------ ----- -----
SYS TRUE TRUE
RENE TRUE TRUE
SYS@ora10> revoke SYSDBA from rene;
Revoke succeeded.
SYS@ora10> select * from v$pwfile_users;
USERNAME SYSDB SYSOP
------------------------------ ----- -----
SYS TRUE TRUE
RENE FALSE TRUE
SYS@ora10> revoke SYSOPER from rene;
Revoke succeeded.
SYS@ora10> select * from v$pwfile_users;
USERNAME SYSDB SYSOP
------------------------------ ----- -----
SYS TRUE TRUE
Links
orapwd.
이 내용에 흥미가 있습니까?
현재 기사가 여러분의 문제를 해결하지 못하는 경우 AI 엔진은 머신러닝 분석(스마트 모델이 방금 만들어져 부정확한 경우가 있을 수 있음)을 통해 가장 유사한 기사를 추천합니다:
자바 작업 은 Clob 또는 NClob 데이터 형식의 저장 프로 세 스 인 스 턴 스 를 포함 합 니 다.텍스트를 자유롭게 공유하거나 복사할 수 있습니다.하지만 이 문서의 URL은 참조 URL로 남겨 두십시오.
CC BY-SA 2.5, CC BY-SA 3.0 및 CC BY-SA 4.0에 따라 라이센스가 부여됩니다.