OS authentication allows Oracle to pass control of user authentication to the operating system.
UNIX and LINUX:
1) Use "useradd" and "passwd" command to create OS user.
2) Check OS_AUTHENT_PREFIX initialization parameter (ops$ for example).
3) CREATE USER ops$user IDENTIFIED EXTERNALLY.
4) Grant privileges to the user.
WINDOWS:
1) Create local user (Start > Programs > Administrative Tools > Computer Management) or domain user in Active Directory.
2) Check OS_AUTHENT_PREFIX initialization parameter (ops$ for example).
3) Set SQLNET.AUTHENTICATOIN_SERVICES=(NTS) option in sqlnet.ora file.
4) Create a new registry parameter only if you are not authenticating a domain name with a user.
HKEY_LOCAL_MACHINE\SOFTWARE\ORACLE\HOMEID, add value, "OSAUTH_PREFIX_DOMAIN" for the name, "REG_EXPAND_SZ" for the data type, "true" for the string value. true enables the server to differentiate between multiple frank usernames, whether they are local user frank, domain user frank on sales, or domain user frank on another domain in your network. Entering false causes the domain to be ignored and local user frank to become the default value of the operating system user returned to the server.
5) CREATE USER ops$user IDENTIFIED EXTERNALLY; local user
CREATE USER "OPS$DOMAIN\USER" IDENTIFIED EXTERNALLY; domain user
"" is required, and characters inside must be in uppercase.
No comments:
Post a Comment