Authenticate Oracle Userid & Password
I have a requirement wherein i need to authenticate the oracle username & password
similar authentication functionality (maybe using PL/SQL or check using SQL query) is required as when a user connects to DB using sqlplus or any tool.
ANy leads/suggestions at the earliest will be very much appreciated
Cheers
Rajesh
No. Passwords in the database are hashed, not encrypted, hence the password cannot be recovered (unless you want to break the hashing algorithm).
Can you explain your business requirements in a bit more detail? You may be able to use something like proxy authentication instead.
Justin
Distributed Database Consulting, Inc.
http://www.ddbcinc.com/askDDBC
Similar Messages
-
What are the userid,password, and host name for oracle 9i?
HI Guys.
I am a research student at the University and the I recently downloaded Oracle 9i for my research. But the problems is also with seting it up. Please could you show me the userid, password, and host name for oracle 9i.
Thanks in advance for your cooperations.
Malinga R
[email protected]I believe that starting with 9.2, you have to specify different passwords when you install (can't be the default).
Justin -
What is the userid, password & host for downloaded personal Oracle 8i?
Can someone please tell me those info? I have gone through all the readme file but had no luck.
Hi,
What exactly you want to ask?
if you are talking about the userid,passwod and host after installing the downloaded version then you can use sys/change_on_install, system/manager or scott/tiger etc as userid/password and hostwill be the ipaddress/physical name of the machine where you installed oracle.
for connecting to oracle server from oracle client you have to configure tnsnames.ora under $ORACLE_HOME/netowrk.admin.
hope this ll help you.
Yogi
[email protected] -
Dear all,
I am looking to setup the use of active directory userid/password authentication instead of SAP R/3 User/Password for digital signature. We SSO to the backened ABAP AS via an SAP NW Portal to which SPNEgo kerberos authentication is setup. Today we specify R3 user id/password to digitally approvae a lot release. The idea is to have users maintain one AD password and don't have to remember the R/3 password anymore and also our Security team to avoid password maintenance.
I know there are 3 options for digital signature and
System signature with authorization by user ID and password (We use this currently)
Digital User signature with verification - (We would like to use this with AD userid/password, so the system still ask the users their AD userid/password for the authentication when they try to "sign" a document.)
User signature without verification
Do you think there is a way to configure the system in order to ask and check the active directory userid/password instead of SAP R/3 password? Where can I found documentation about it ?
I have several different versions of AS ABAP starting from NW 7.02 to NW 7.31.
My active directory is based on Windows 2008.
Thanks in advance!!
DheeActually enabling Kerberos for SSO purposes and enabling Kerberos for digital signatures are two different topics although the latter is because of the former. I'm interested in the topic as well and I'm currently looking at different options. SAP provides a BAdI for the digital signature API which can be used for external authentication but they do not provide the solution to invoke Kerberos authentication based on username and password. SAP provides a semi solution with NWSSO 2.0 SP2 which works only on Windows with classic dynpros meaning SAP GUI for Windows is assumed. The solution is based on an ActiveX component which does the actual Kerberos authentication using the Secure Login Client which is part of the NWSSO suite. Extending that implementation to non-Windows and non-GUI applications would require some sort of web enabled service that could be used to authenticate the user with username and password. In case authentication is successful, a Kerberos token would be returned to SAP which would then be validated. All the required pieces are there since SAP has Kerberos support now in both stacks of the NetWeaver Application Server, some bits are still missing though which leaves customers looking at 3rd party or custom solutions.
-
UserId/Password Not Given-expected to run SQL Plus
So that we may better diagnose DOWNLOAD problems, please provide the following information.
I downloaded Oracle 9i and I'm trying to run SQL Plus and its asking me for a userid, password and a host string. I don't know what the userid, password or host string would be. I wanted to see how I like Oracle for a database and just wanted to enter some SQL.
How will I know what the userid, password, host string would be?
- Server name = none
- Filename = none
- Date/Time 2/8/02
- Browser + Version = Internet Explorer
- O/S + Version = Windows 20000
- Error Msg = invalid userid/passwordcould you please suggest what could be the reasonYou are running Oracle on an unsupported operating system (Vista Home premium). You either need to change the OS or use the package meant for Windows Vista.
http://www.oracle.com/technology/software/products/database/oracle10g/htdocs/10203vista.html -
Userid/password in a popup dialog box?
When I sign on to the forums today either on an iPhone or Firefox in windows, I'm getting a popup box to enter userid/password instead of the usual Oracle single sign on page.
Is this something new?Seems to be a feature :-) Has happened many times before - it is typically corrected within a few hours
Where's my handle?
Handle not working
HTH
Srini -
Chang system userid/password for another server instance
It it possible to change the system userid/password for another server
instance. If so , how ?
I would like to allow certain groups to be able to start and stop ONLY their
server without giving out the system account.
Thanks in advance!the relationship between the infrastructure nodes and the application server nodes is a one to many relationship. The infrastructure home should be the only home that the EMWebsite service has been started for.
the user to log in to em console is ias_admin/<password> if it does not accept the password that you set for this user then try it with caps lock on as you may have had it one when setting the password.
As 9ias release 2 has been designed with a multiple machine install in mind, if you install more than one instance (multiple oracle homes) on the server then you will end up with multiple apache processes and oc4j processes. This means you will be able to connect to 2 apache server homepages under different ports. That is why you get the same page. -
Invalid userid/password message
<p>We're using external authentication (Oracle), when the user'saccount is locked or expired, portal displays generic message"Invalid userid/password", we need to be able to tellthem why their login was denied so they can take the appropriateaction</p>
<p>Chris,</p><p> </p><p>I too have looked into this since my apps too have theseissues.</p><p>I have checked all documentation and contacted hyperion supportand I havent found a way to do it.</p><p> </p><p>If we write custom logon pages and then pass thevariable(username/password) to hyperion products , then we shouldbe able to do it. I havent done it but it definitely isplausible.</p><p> </p><p>If you get it to work without writing custom logon pages, pleaselet me know too.</p><p> </p><p>Good Luck !</p><p>thanks</p>
-
Hide UserID, Password, and Report Path when call Report from Report
Hi,
I have been able to call Report from Report using the hyperlink.
I put these code in my Field on the Report caller.
function F_3FormatTrigger return boolean is
temp varchar2(2000);
begin
temp := 'http://<computer_name>:8889/reports/rwservlet?';
temp := temp || 'server=repsrv' || '&' ||
'report=C:\MyReport\rep_detail.jsp' || '&' ||
'userid=scott/tiger@orcl' || '&' ||
'desformat=htmlcss' || '&' ||
'destype=cache' || '&' ||
'P_1=' || :ItemID || '&' ||
'P_2=' || :ItemName;
SRW.Set_Hyperlink(temp);
return (TRUE);
end;The hyperlink showed, and I can see the rep_detail.jsp showed in the same browser after I clicked the hyperlink.
The problem is, the hyperlink has to include the reports path and also userid and password.
If I did not put the userid and password, it will showed in another browse that
"The report has uncompiled PL/SQL"
How can I hide those userid, password, and the reports path?
BTW, Is there anyway to show the report callee in different page (precisely, open another IE) from the report caller?
Any help would be grateful.
Many thanks,
BuntoroHi,
Thanks for the answers.
Yet, I am still doubt about using cgicmd.dat.
I have looked around in this forum saying that it is not secure to use cgicmd.dat. Because all report request does not use authentication (the client can directly open report without login).
In Form, I can use the On-Logon to do the Oracle Form login (to do logon to the database), and then I use my own custom user login to restrict the menu for each user.
I do this since I want to restrict the user,
i.e user A can only view the sales form as well as sales report,
user B can only view the purchasing form as well as purchasing report.
Well, I am not so fond about the SSO itself.
It comes to my mind, since I don't have to re-login (to the database) each time I call another form (login database is only once at the first Form, On-Logon). It also goes to when calling the report caller.
What is RAD?
How can we use it?
Is OID = Oracle Internet Directory?
If true, maybe, I won't use it since I don't understand about it also.
Why we don't have to specify the userid and password when Form calls Report1 (using Run_Report_Object and Web.Show_Document())?
But we have to specify the userid and password when Report1 calls Report2.
Any help is appreciated.
Many thanks,
Buntoro -
hi guise.
when i run oracle designer it's ask me user id / password...
i dont's know the userid password can u plz help me..When the repository was installed, it was installed under a repository owner which is an Oracle user in the repository's database. The repository owner in turn can use the Repository Administration tools to grant access to other Oracle users in the same database. These are given various levels of access, one of which allows them to create new containers using the Repository Object Navigator. They can then grant access to their containers to other users.
So you must go to your database administrator for the database containing your repository and ask for a username and password, then to the repository administrator and ask for that username to be granted access to the repository, and finally to the owners of any containers to which you need access. Fortunately, these are often all the same person - maybe you? -
I am new to Oracle and I am trying to launch the SQLPLUS GUI and I don't know what the USERID / PASSWORD would be.
Any help. ThanksJoel,
I'm having the same problem logging into sqlplus. I just installed the Oracle9i client for Microsoft Win2k Pro. The installer gave me 3 options to install 9i. The full version, the client version, and custom. I chose to install only the client so that I can practice my sql.
I followed your directions below (sqlplus /nolog...conn / as sysdba etc.), but I still couldn't connect to sqlplus.
The message I get is:
"ORA-12560: TNS:protocol adapter error".
Please help! I'm not trying to do anything fancy. I just want to load the demo tables so that I can do my exercises.
Thanks
H -
Provision UserID/Password from SAP Ssyetm to Non-SAP System
Hi,
I have a requirement to be able to provision UserID & Password from a SAP ECC6 system to a non-SAP thick client application. All interactions between ECC6 & the non-SAP Application will be via SAP PI. (SAP EEC6 <-> SAP PI <-> Non-SAP App)
Our landscape includes:
SAP ECC6
SAP BI
SAP PI
SAP SOLMAN
SAP Portal
non-SAP App
SAP IdM has been ruled out due to budget constraints, Active Directory is not suitable due to the requirement that the non-SAP application must be able to authenticate users if the WAN/LAN is down.
Yes, we could simply maintain the users in both systems, but for the time being that has been deemed not appropriate.
I have thought about using CUA on SOLMAN to provision to the SAP Systems & then use SAP PI somehow to provision to the non-SAP App, but I have no idea how to pass the raw user password through SAP PI.
If anyone has any ideas or can point me to links where I can do further research would be much appreciated.
Thanks in advance,
Stephen HallThe search term "password AND synchronize" will help you further to find "flamewars" from the past.
You cannot send "raw" passwords from CUA, as the password is represented by a "one way" hash which is not decryptable by mortals, but rather the "raw" password is encrypted and the hashes are compared locally. Non-SAP systems cannot do this... (bar trial-and-error).
A better option would be to use a SSO mechanism. This is very easy within SAP.
For bi-directional authentication with non-SAP you will face some challanges...
The easiest option is to re-use a PKI certificate based authentication or re-use the native Kerberos authentication available for Windows bases PCs.
In the SAP --> non-SAP direction you can consider using a verification library to extract the user name - but that is not "state of the art" and if such a UID should be encrypted then have fun...
In the non-SAP --> SAP direction you are best off forgeting about the infrastructure trust or worste-case-scenario is a password sync. Rather re-authenticate the caller using a realm which already exist.
Active Directory is not suitable due to the requirement that the non-SAP application must be able to authenticate users if the WAN/LAN is down.
I would consider an application specific password self-service as a failover only and go for the AD or an "identity provider" which your applications trust as a service.
If your AD or entire network goes down you will probably be in bigger trouble than passwords... so you should not expose "raw" passwords during normal operations for this eventuality...
Cheers,
Julius -
Reason for using "UserID:password" for PKCS11 when it only accepts a pin?
With respect to TDE with HSM, I understand that the following command is used to set the master encryption key for Oracle Database 11g. However, why does a userID have to be specified, when the PKCS#11 library only requires a PIN?
ALTER SYSTEM SET ENCRYPTION KEY IDENTIFIED BY "userID:password"Hello Lopper,
we used this as an example; today, you'll find it mostly written as:
SQL> alter system set ... identified by "HSM_auth_string"; where "HSM_auth_string" can be "user_name:password", a "PIN", or just a "Password".
HTH, Peter -
How can i retrive my userid/password?
I forgot my userid/password of my oracle 9i ,how can i retrive it?
I forgot my userid/password of my oracle 9i ,how can
i retrive it?What's your os platform?
Which user are you talking about?
a priori, a reset procedure can be executed
1. Are you the DBA?. From your OS where DB is installed
$ sqlplus '/ as sysdba'
SQL> ALTER USER yourUser IDENTIFIED BY yourPassword;
2. You aren't the DBA. :( Technically speaking, you can do nothing. -
Custom Component UserId/Password
Hello All - I'm developing a set of custom components in which I need to call a back end system. In order to do this I need to authenticate to the back end system and I want to give the user the option to use either a functional account or the "process context" i.e. the user who is running the task (similar to what you see in the Documentum/FileNet components).
Is there a way to query LiveCycle to get the userid and password of the user who is running the process that contains the component?
Thanks.
BryanHoward - Thanks for the reply. Each task in a LiveCycle process could be run by a different user however every call to the LiveCycle server must be authenticated..hence you have to log in to workspace before performing an action..or when making API calls via webservices or the java api you must supply a credential.
If you look at the way the FileNet and Documentum connectors are built Adobe has used a custom authenticator to actually store the credentials of the user who is logged into the service in a credential cache. Then on their components they allow you to check "run as process context" or something to that effect which will basically look in that cahce to find the username and password.
Before I went down this route (as I know it will work) I was trying to find out if Adobe had any other place that they store the credentials that came into the service call (after all a task in an orchestration is simply a service call). That way I could retrieve it and build the connection to my backend system with that userid/password.
Thanks,
Bryan
Maybe you are looking for
-
I have a majority of my music backed on another laptop that i can access, and I had downloaded some music from my brothers itunes library that I can get back. As well as apps, I know i can re-download those for free. It's just the music i downloaded
-
I have a small software to generate Letters. This is integrated with the Sales module. Both Sales and Letter modules are developed using Oracle10g. In the Letters module user can write his/her own letter and if we want to add some information from th
-
Getting error in ASA logs from CSM - after adding device to inventory
I've supplied the correct credentials for the ASA in the inventory section of the CSM. I get a success but, I also get a failure. The failure in the logs does not show a username is only shows "" and the protocol as https Any ideas on why this happen
-
Hi all: What is the line to put in glogin.sql I want to change the default SQL*Plus prompt to something else
-
I can't install the catalyst control center...why?
tried every way. complete deinstallation of all AMDContent, then reinstallation but the ccc doesn't install.