DBSNMP User Password

[Version 10.2.0.2]
Problem: I am trying to recreate the repository for the enterprise manager and I continue to receive invalid/username password errors for the dbsnmp user.
What I've done so far:
1) I've modified the monitoring_profile so that the account will not expire or lock.
2) Using the emca I've dropped the repository AND configuration files
3) I've logged into the database using the new password.
4) I've bounced the database.
5) When I go to the $ORACLE_HOME/sysman/emd/targets.xml file the file only contains an empty Targets element.
Any suggestions on how I can recreate the repository or get beyond this dbsnmp user/password problem?
Thanks in advance.

Hi,
Take a look at the following....
Re: OEM configuration and DBSNMP user Password problem
Greetings,
Sim

Similar Messages

  • Changing password of Sysman and DBSNMP users in Oracle 10g (10.2.0.3.0)

    Hi,
    When i changed my sysman and dbsnmp password, these users are frequently locking.
    For sysman password change i do the following steps.
    1) emctl stop dbconsole
    2) change password of sysman and dbsnmp from sql
    3) Post sysman password change to emoms.properties file
    4) Post DBSNMP password change in targets.xml
    5) emctl start dbconsole.
    DBSNMO AND SYSMAN users were locked.
    Stop dbconsole again
    Unlock the user sysman and dbsnmp
    then again restart dbconsole
    Sysman user locked
    Another thing do we need to have same password for dbsnmp and sysman
    Regards,
    irfanb146

    Now Sysman and DBSNMP users are unlocked after i made the password of sysman change again and they are not locking.
    Following is the message in the browser
    Enterprise Manager is not able to connect to the database instance. The state of the components are listed below.
    Browser is showing All the components are up like instance, Agent and Listener with green arrows upward
    Message was edited by:
    user605066

  • Emca Continually Shows "Invalid username/password" for the DBSNMP User

    Hi,
    During configure dbconsole DBSNMP user is giving invalid password whereas i am able to connect dbsnmp using sqlplus as below.
    SQL> conn dbsnmp/dbsnmp@UAT
    Connected.
    while i m tryin to configure dbconsole got below error
    emca -config dbcontrol db -repos create
    $emca -config dbcontrol db -repos create
    STARTED EMCA at May 29, 2010 4:29:31 PM
    EM Configuration Assistant, Version 10.2.0.1.0 Production
    Copyright (c) 2003, 2005, Oracle. All rights reserved.
    Enter the following information:
    Database SID: UAT
    Listener port number: 1521
    Password for SYS user:
    Password for DBSNMP user:
    Invalid username/password.
    Password for DBSNMP user:
    Invalid username/password.
    Password for DBSNMP user:
    Thanks

    Hi,
    Ok i will do in future.
    I did as you said but issue is still coming.Now the error is bit different in the log file For this same error i found solution in meta doc id 337260.1 for exact error In the solution i have to to set the value as below but it has already same value.
    Error:
    CONFIG: SQLEngine created successfully and connected
    May 29, 2010 5:03:06 PM oracle.sysman.emcp.DatabaseChecks validateUserCredential
    CONFIG: Failed to update account status.
    oracle.sysman.assistants.util.sqlEngine.SQLFatalErrorException: ORA-01034: ORACL
    E not available
    Solution:
    In order to fix the Invalid username/password message
    Check the profile limit for the users SYSMAN, DBSNMP and MGMT_VIEW
    select u.username, u.profile, p.resource_name, p.limit
    from dba_profiles p, dba_users u
    where p.profile=u.profile
    and u.username in ('SYS', 'SYSMAN','DBSNMP','MGMT_VIEW')
    and p.resource_type = 'PASSWORD'
    order by u.username, p.resource_name;
    If the value of LIMIT for PASSWORD_VERIFY_FUNCTION is not NULL:
    Change the password so that it meets the function requirements.
    If the value of LIMIT for PASSWORD_REUSE_MAX is not UNLIMITED:
    Change the password so that it is different from a password that has already been used the number of times set in PASSWORD_REUSE_MAX.
    Or
    Change the value of LIMIT for PASSWORD_REUSE_MAX to UNLIMITED for the profile.
    Below output of 1st query:
    USERNAME     PROFILE     RESOURCE_NAME     LIMIT
    DBSNMP     DEFAULT     FAILED_LOGIN_ATTEMPTS     UNLIMITED
    DBSNMP     DEFAULT     PASSWORD_GRACE_TIME     UNLIMITED
    DBSNMP     DEFAULT     PASSWORD_LIFE_TIME     UNLIMITED
    DBSNMP     DEFAULT     PASSWORD_LOCK_TIME     .0006
    DBSNMP     DEFAULT     PASSWORD_REUSE_MAX     UNLIMITED
    DBSNMP     DEFAULT     PASSWORD_REUSE_TIME     UNLIMITED
    DBSNMP     DEFAULT     PASSWORD_VERIFY_FUNCTION     NULL
    SYS     DEFAULT     FAILED_LOGIN_ATTEMPTS     UNLIMITED
    SYS     DEFAULT     PASSWORD_GRACE_TIME     UNLIMITED
    SYS     DEFAULT     PASSWORD_LIFE_TIME     UNLIMITED
    SYS     DEFAULT     PASSWORD_LOCK_TIME     .0006
    SYS     DEFAULT     PASSWORD_REUSE_MAX     UNLIMITED
    SYS     DEFAULT     PASSWORD_REUSE_TIME     UNLIMITED
    SYS     DEFAULT     PASSWORD_VERIFY_FUNCTION     NULL
    Thanks

  • Password for the DBSNMP user Keep Changing

    Hi ..
    I see frequent change in the password for the DBSNMP users, as a result facing metric collection error for the target instances. Please advise what could be the reason for it. I have created a separate profile for the this user and changed the failed_login_attempts to Unlimited.
    Thanks.

    user582604 wrote:
    Hi ..
    I see frequent change in the password for the DBSNMP users, as a result facing metric collection error for the target instances. Please advise what could be the reason for it. I have created a separate profile for the this user and changed the failed_login_attempts to Unlimited.
    Thanks.Also set password expiry date to unlimited otherwise password will expire.
    You can check expiry date , account_status from dba_users .
    Regards
    Rajesh

  • DBSNMP User suddenly locked

    Hi all,
    we have a problem with a locked DBSNMP-User.
    We are monitoring our databases with Cloud Control 12c. Single-Instance databases are configured with DBSNMP-User, databases in DataGuard-Environment are configured with SYS-User.
    Some of DataGuard-databases (production) were cloned on regulary basis for stage, this stage databases should be monitored by DBSNMP, because they are single instances.
    Unfortunally the DBSNMP User in the production databases is locked, so monitoring on stage failed.
    We unlock DBSNMP on production, but after a while the user is locked again. It seems that the agent connects with dbsnmp and wrong password to the database instead with the configured SYS-User.
    Does anybody saw this behaivor? Is this a bug or a feature? Any ideas what to change?
    Regards
    Jürgen

    Hi Sam,
    we had similar idea.
    But we see this on some database, not only one.
    We think, that there is a "clodControl-process" which tries to connect with User DBSNMP not with SYS, what is configured. So it seems, for some processes the user DBSNMP is hard coded and we like to know which processes this are.
    Regards
    Jürgen

  • DBSNMP user consumes too much cpu resource

    Hello,
    for a couple of weeks, I realized that DBSNMP user is always in top user list and it seems at least 15 percent of cpu has being used! as i know this is not normal. is there any one who experienced something like that ? I search for it but couldnt find anything useful.
    thanks

    HI,
    DBSNMP is the account used by Oracle’s intelligent agent to logon automatically to remote servers in order to provide information for presentation via Enterprise Manager. DNSMP has the SELECT ANY DICTIONARY system privilege which can read the passwords from SYS.USER$ and enables the account to do its work for the Intelligent Agent. The problem is that an Attacker could log on to Oracle as DBSNMP especially if the default password has not been changed. The attacker could then read the password hashes from SYS.USER$.
    dbsnmp is used by OEM as Intelligent agent for nodes discovery
    Can you please restart dbconsole service and check.
    export ORACLE_SID=
    ./emctl status dbconsole
    ./emctl stop dbconsole
    ./emctl start dbconsole
    Regards,
    Praful Kawaji

  • How to change Analyzer user password with Administration API?

    Hi,<BR>I would like to change Analyzer user password with Administration API. Can someone post some sample commands to do the task?<BR><BR>I would just like to write an application to change end user's Analyzer password.<BR>As I see I would need to do the following:<BR>1. login with admin userid/password<BR>2. execute some method to change password for required userid. I think the input parameter should be userid (of the user I would like to change password) and new password (the new password for the user).<BR>3. logout<BR><BR>Can someone post some sample code (commands to execute)?<BR><BR>Thanks,<BR>grofaty<BR><BR>My system:<BR>Analyzer Server 7.0.1.<BR>Essbase server 7.1<BR>Windows XP SP2<BR>

    <blockquote>quote:<br><hr><i>Originally posted by: <b>knightrich</b></i><BR>Hello Mr. Jordan.<BR><BR>I would like to exchange some thoughts about "housekeeping" Analyzer reports in preparation for migration from Analyzer 7.0.0.0.01472 to 9.x:<BR><BR>...<BR><BR>Did you solved such a problem or do you have an idea if it could be solved with the Admin API methods?<BR> ...<BR>Migration from 7.00 to 9.x: As we heard last week the "Migration Wizard for Reports" in 9.3 should be able to migrate reports. Do you have experience or more detailed information about that Wizard?<BR><BR>Many thanks in advance<BR><BR>knigthrich<hr></blockquote><BR><BR>knighrich, <BR>I'd like to be more help, but I have no experience with System 9. I did substantial cleanup when we migrated from Analyzer 6 to Analyzer 7.1, and even more cleanup when moving up to 7.2, but our installation is smaller in scale than yours and we didn't need to automate report cleanup.<BR><BR>You might be able to get the ownership information you need through the back door, doing a direct query on the database, but simpler might be an export users, at least from 7.0. (This facility probably doesn't exist in system 9; it was dropped in 7.2 in favor of an undocumented API) The export file is an xml file that could easily be parsed to identify reports that have the administrator as user and then a second pass to delete those with otuer ownership as well. As previously suggested, you might be able to get this by a well crafted SQL query against the repository.<BR><BR>Procedurally, we have both public reports that have the blessing of management and are widely available, owned by a "public owner", and private reports developed by indivdual users and shared or not. Our team maintains the public reports, but not the private reports. We may be asked to make a previously private report public and take over maintenance of it. <BR><BR>I hope that you can find a solution that meets your needs. Certainly a call to customer support to identify a poorly documented feature would be in order.<BR>

  • HT204053 How do I create an Apple ID for my kids which are linked to my Apple ID so that they can make purchases without me having to tell them my user/password?

    How do I create an Apple ID for my kids which are linked to my Apple ID so that they can make purchases without me having to tell them my user/password?

    Welcome to the community.
    Unfortunately, you cannot do that. The first hurdle that you are going to face, is that mobile devices, by virtue of being prone to loss, will always require that a password is entered before a purchase of any kind is made.
    If your concern about the password, is related to your privacy in regard to your mail, contacts and calendar information rather than their acces to make purchases, then the best solution would be for you to use another Apple ID for iCloud.
    Apple have called the whole cloud thing iCloud, there are a number of features under the iCloud umbrella, some of which require their own login. iTunes is one of these, another is what Apple have unfortunately also called iCloud too.
    You can use the same Apple ID (account) to login to both iCloud and iTunes, but you don't need to and often users will login to each service using a different ID.
    The part that you need to remember is that the services available when you log into iCloud are completely different and unrelated to those when you log in to iTunes. Your iCloud login enables mail, contacts, calendars, find my phone, Back to My Mac, Documents & Data sharing and photostream, it does not affect any of your iTunes services.

  • Why have a default user password feauture?

    Hi,
      I (understood) read in the manual that there could be a default user password -
    28 BF 4E 5E 4E 75 8A 41 64 00 4E 56 FF FA 01 08
    2E 2E 00 B6 D0 68 3E 80 2F 0C A9 FE 64 53 69 7A.
    If the file is encrypted based one this key, readers can open the file without having to prompt for password though the file is encrypted. I want to know whats the point of this? It provides no security. All it ensures is the reader be sophisticated enough to have a security handler. I don't see the point. Is there any advantage of having such a pdf with default user password?.What was the motivation behind this?
    Thanks

    The Standard Security method of PDF supports TWO passwords - the user/open password and the owner/permissions password.  In addition, an encrypted PDF can have a set of rights (DRM) associated with it (eg. Don't print, don't copy, etc.)
    If you wish to control WHO can open the PDF, then you assign a user/open password.  If you wish to allow ANYONE to open the PDF, then you leave it as the default.
    Once the PDF is open (regardless of the open password), then the reader is responsible for respecting the DRM settings on the document.  However, if you are the owner of the PDF (and there is a permissions password), then you can get back FULL permissions by simply providing the owner password.
    Make sense now?

  • User Passwords Rejected on AFP share mounts?

    User Passwords Rejected on AFP share mounts?
    (OK, my last post got buried, and perhaps too long), try again. Very brief
    Issue:
    After so many days, a User's AFP share password is rejected? What gives.
    If you reset it, several days later, same thing, rejected.
    Is Netinfo Database corrupted, what can / should be done?
    - Stand Alone server (with AFP and FTP services running, all other services off, not running.
    Summary Info for user having issue:
    Location: 192.168.0.50/NetInfo/DefualtLocalNode
    Home: No Home Directory
    Primary Group: Users (20)
    Password: Shadow Password
    I have deleted that troublesome user name and created a new name (for that user), just in case, in the re-creation of the same user name (after deletion) some corruption gets inherited.
    thanks,
    macguitarman
    Power Mac G5 Dual 2.0   Mac OS X (10.4.7)  

    Using Tiger Server, I have found that enabling ACLs, or Access Control Lists on the volume, and then specifying users and/or groups into the specific ACLs for the share point has been very helpful. Also note that 10.4.10 server seems to work better than 10.4.11, so if you haven't upgraded, don't go beyond 10.4.10. .11 seems to have some permissions issues and other problems.
    I assume you are connecting to the server via AFS (i.e. Go > Connect to Server > ip address) and not SMB? SMB sometimes is more problematic about ownership. But either way, Mac or PC clients, it seems ACLs are the way to go.
    Crazy as it seems, on my server, even if the owner is, say, admin, and the group with r/w permissions is, say, Prepress, it helps to specifically add the Prepress group to the ACL for that share. Then be sure to propagate the permissions down (unless you don't want to, for some reason). To do this, click the little gear icon and propagate all the permissions -- owner, group, acl, etc. down. This will take a bit of time depending on how much stuff you have. I also find that a server reboot can be helpful.
    [[ All this said, 10.5.1 seems to do some crazy things, and I hope 10.5.2 addresses them. I have one machine (not user ID) that always creates a folder on a share with no permissions for anyone. Only from that Mac; the same login on another works just fine. Go figure]]

  • User Password change fails in OWA 2013

    User Password change fails in OWA with this error: Your password couldn't be changed. Make sure the old password you typed is correct and that the new password meets the minimum security requirements.
    We are migrating from Exchange 2007 to Exchange 2013.  Have mailboxes in both environments.  OWA 2007 password changes succeed (user mailbox is still in Exchange 2007).  When the user mailbox is moved to Exchange 2013, password changes fail
    with the above error.
    We have the Exch 2013 servers are on Windows 2012 and we are running Exch 2013 CU3.   We have made changes to the Default Role Assignment Policy to prevent users from changing Contact information and setting user photos, etc.  We are not exactly
    sure when user password changes stopped working, or even if they ever did work, although we recently installed our Prod Exch 2013 servers alongside our 2007 servers without any RBAC delegation implemented and a quick test of a user password change was successful.
    I reversed all the changes to the Default Role Assignment Policy but the password change still fails.

    Hi,
    Please try the following steps in your CAS server:
    1. Click Start > Run and type regedit and click OK.
    2. Navigate to the "HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA" key.
    3. Set the ChangeExpiredPasswordEnabled value from 1 to 0.
    4. Close regedit and re-open it.
    5. Set the ChangeExpiredPasswordEnabled value from 0 to 1.
    6. Close regedit.
    7. After you configure this DWORD value, please reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.
    Here is the similar thread about password change issue in Exchange 2013 CU3, please refer to:
    http://social.technet.microsoft.com/Forums/en-US/30b74c81-9b98-46f4-9ca0-1c3bb74f4a3f/users-with-expired-passwords-or-change-password-at-next-logon-unable-to-change-password-via-owa-in?forum=exchangesvrclients
    Hope it helps.
    Thanks,
    Winnie Liang
    TechNet Community Support

  • How to change user password from default realm programaticaly

    Hello,
    I would like to know if there are any ways to change a users password from a file
    realm through java classes ie . programaticaly.

    Thank you for the support.
    After looking at the code, I noticed RealmManager is not documented in the BEA
    Javadocs. Am I missing something or is it not documented. Lot of other methods
    also not documented. Do you have the latest Javadocs?
    Thanks
    John
    "Tom Moreau" <[email protected]> wrote:
    >
    See message #4589 - it posts the code magic needed
    to change the password. The caller doesn't have to
    be aware of which realm is being used - that's taken
    care of for you.
    -Tom
    "John M" <[email protected]> wrote:
    Hello,
    I would like to know if there are any ways to change a users passwordfrom
    a file
    realm through java classes ie . programaticaly.

  • Change User password not working in SAP ME 6.0

    Hi,
    In SAP ME 6.0 SP01 6.0.1.0 Counter 40, the activity "Change User Password" does not work for me or any other user.
    The activity window (Netweaver) shows, but in the top it says "An error occurred - contact system administrator".
    This is the output from the default trace file. Seems my user is not authorized, but where do I set this authorization?
    Br,
    Johan
    #2.0 #2011 09 06 11:15:11:064#+0200#Error#com.sap.security.core.wd.jmxmodel.JmxModelComp#
    #BC-JAS-SEC-UME#sap.com/tcsecumewduimodel#C0000AD3034800820000000100000450#9934850000000004#sap.com/tcsecumewdkit#com.sap.security.core.wd.jmxmodel.JmxModelComp#JONORD#16##380199ECD86811E088C3000000979802#ae0e9d52d86811e08e7a000000979802#ae0e9d52d86811e08e7a000000979802#0#Thread[HTTP Worker [@312363456],5,Dedicated_Application_Thread]#Plain##
    public void supplyCompany(IPrivateJmxModelCompInterface.ICompanyNode node, IPrivateJmxModelCompInterface.IContextElement parentElement)
    [EXCEPTION]
    com.sap.engine.services.jmx.exception.JmxSecurityException: Caller JONORD not authorized, required permission missing (javax.management.MBeanPermission -\#getCompanyConceptEnabled[:SAP_J2EECluster="",j2eeType=UmeJmxServer,name=IJmxServer] invoke)
         at com.sap.engine.services.jmx.auth.UmeAuthorization.checkMBeanPermission(UmeAuthorization.java:100)
         at com.sap.engine.services.jmx.JmxServerFrame.checkMBeanPermission(JmxServerFrame.java:101)
         at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.checkMBeanPermission(MBeanServerSecurityWrapper.java:438)
         at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.invoke(MBeanServerSecurityWrapper.java:288)
         at com.sap.engine.services.jmx.ClusterInterceptor.invoke(ClusterInterceptor.java:813)
         at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:367)
         at com.sap.security.core.jmx._gen.IJmxServer$Impl.getCompanyConceptEnabled(IJmxServer.java:1415)
         at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.supplyCompany(JmxModelCompInterface.java:1498)
         at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface.supplyCompany(InternalJmxModelCompInterface.java:710)
         at com.sap.security.core.wd.jmxmodel.wdp.IPublicJmxModelCompInterface$ICompanyNode.doSupplyElements(IPublicJmxModelCompInterface.java:4301)
         at com.sap.tc.webdynpro.progmodel.context.DataNode.supplyElements(DataNode.java:110)
         at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
         at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
         at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
         at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
         at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
         at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
         at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
         at com.sap.tc.webdynpro.progmodel.context.Node.getElements(Node.java:270)

    Hi,
    Change User Password screen is in fact user self services screen of NW UME and to access it, user must have Manage_My_Password action. Installation and Security Guide ask to assign this action to all roles.

  • How to prevent user password being reset to the same password?

    Hi,
    As you all know, domain admin has the power to reset user password.  Let's think of the following scenario:
    if an admin lets a user reset his password to use the same string, this action means he could nullify company policy on password which requires user's last N passwords being recorded in the history.
    We could very well imagine that the admin reset his own personal password in order to bypass company policy.
    I have asked partner forum to see if there's a way to prevent such thing, but the reply I got is "No".
    I wanted to know if anyone of you have any idea to prevent such thing from happening?
    Or if it's possible to get the hash value of users past N password to see if he's always using the same password?
    Thanks in advance for your ideas.

    Good rules is better alternative to complex policy.
    Combine password history with time interval between changes.
    Regards
    Milos
    You don't understand what I mean.
    He knows exactly what you mean. 
    check out this link below:
    http://technet.microsoft.com/en-us/library/cc757692%28v=ws.10%29.aspx
    Enforce password history
    The Enforce password history policy setting determines the number of unique new passwords that must be associated with  a
    user account before an old password can be reused .
    The possible values for this Group Policy setting are:
    A user-defined number from 0 through 24.
    Not defined.
    Discussion
    Password reuse is an important concern in any organization. Many users want to reuse the same password for their account over a long period of time. The longer the same password is used for
    a particular account, the greater the chance that an attacker will be able to determine the password through brute force attacks. If users are required to change their password, but nothing prevents them from using the old password or continually reusing a
    small number of passwords, the effectiveness of a good password policy is greatly reduced.
    Specifying a low number for Enforce password history allows users to continually use the same small number of passwords repeatedly. If you do not also set Minimum
    password age, users can change their password as many times in a row as necessary in order to reuse their original password.
    If you set Enforce password history to a number greater than zero, users must come up with a new password every time they are required to change their old one. This
    improves security, but it can increase the risk that users will write down their passwords so they do not forget them.
    If you set the value to the maximum of 24, it helps to ensure that vulnerabilities caused by password reuse are kept to a minimum.
    For this policy setting to be effective in your organization, configure Minimum password age so that you do not allow passwords to be changed immediately. Enforce
    password history should be set at the level that combines a reasonable maximum password age with a reasonable password change interval requirement for users.
    Location
    GPO_name\Computer Configuration\Windows Settings\Security Settings\Account Policies\Password Policy\
    Every second counts..make use of it. Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
    IT Stuff Quick Bytes

  • Multiple users\passwords on the same website with Safari

    Coming over from Netscape for MAC to Safari.
    Here is the issue-- In Netscape I was able to have multiple users/passwords for the same website page. Netscape controls its users/passwords; not the keychain. With Safari everytime I try to enter the second user/password this wipes out the first user and password.
    Is there a way with Safari to have mutlple users/passwords for the same website page?
    Thanks,
    Reed

    A service might call the other one.

Maybe you are looking for