Minimum rights needed for Oracle user to run BO

Similar Messages

• Groups in Linux needed for 'oracle' user

  I have a new server running OEL6 that I plan to install EM 12C and a database using ASM.
  My install user is 'oracle'. Documentation states that 'oracle' should have the primary group of 'oinstall' and a secondary group of 'dba'.
  Awhile back (before things were Grid Infrastructure) we had some problems with an install and an Oracle support person told me to get rid of 'oinstall', and soley rely on 'dba'. She talked about the numerous support calls serviced by introducing both groups.
  I took her advice, and most of our things are still running with 'oracle' and 'dba'.
  But, we are embarking into a new world, and perhaps the 'oinstall' and 'dba' issues have been worked out, and there is a benefit to having multiple groups. We are a pretty small shop and don't have different groups doing things; we are mostly a few of us required to do it all. In that sense, less is more--more easier to support.
  Are there recommendations for the 'oinstall' and 'dba' groups? Pitfalls encountered?
  Sherrie

  Thanks Loc.
  Most of the documentation that I've read, including the note you mention, says that going forward from 11.2, oinstall should always be used. I think it's a blanket statement intended to cover all bases, and I can understand that architecture in a large group, where one group might be responsible for an install, another group for managing a database, and perhaps someone else managing storage. I'm trying to undersand how oinstall vx dba groups are used, and why oinstall is so important.
  In our group, there are just a few of us, and we do it all.
  We have 5 clusters wiht 28 managed databases at 11.1. All of those were installed with the primary group of dba, and a secondary ground of oinstall. They've been working fine for a few years.
  We are now installing EM12C grid on a new machine, starting with grid infrastructure to get ASM installed, so that our repository database can use it.
  So, on this Linux box we will have ASM, database, agent and OMS. It's a standalone box, and our primary group is oinstall.
  I have been having trouble getting the first step of this completed, installing GI to get ASM up and running. But, that's not part of this question.
  Once I get this all configured and running, I will have to install the new agent on all of our targets. Over on those old boxes, he'll still be installed as 'dba', which can read all of the targets. So I think I'm okiay. It's just that I'm stuck with one foot in each door. But having 2 groups for the 'oracle' user will make it okay.
  Sherrie

• Minimum Files needed for bare bones XP Install?`

  Hello
  I'm new here having recently bought my first MBP. Does anyone know the minimum files needed for a custom (lite) XP Pro install using BootCamp?
  All I want to run is DV-Rack plus maybe 1 or 2 other programs but I don't want to waste space on my 200gb HD. I do't even want to install MS Office because I like iWorks better.
  Thanks
  Allen

  My recommendation is nothing short of 12GB. For your purposes, that you indicated in your post, 12GB should be fine. Please also consider any future uses that you may have for Windows XP. I have seen several times, on this forum, where a user sets the partition too low and then wishes to increase the size and it cannot be done unless Boot Camp and Windows is re-installed from scratch.
  If you can afford the disk space then I would even recommend 32GB and that would allow you to have some space left for future programs if any.
  Axel F.

• Change of UID for Oracle user  - Impact

  If change of UID for Oracle user in solaris will affect the database which is already running. Wil it have any impact for the databases?
  Guys please advise.
  Thnx,
  Satheesh

  Many thanks for the response. We are not changing the UID but there are some errors in the script related to file permissions. So just wanted to know will it have any impact on the database if we change the UID.

• Changing ulimit for Oracle user

  Hi expert,
  I'm using AIX 5.3 TL 9 with Oracle 11g R2.
  Does changing rss in ulimit for oracle user operating system require restart oracle instance ?
  Need your advice.
  Thanks,
  Yusata.

  ulimit values are read only once when the process is started.
  When we are at it: what did 'man ulimit' tell, and why are you asking Unix questions in an Oracle forum?
  Please stop cluttering up this forum with off-topic questions, without them it is enough of a mess already.
  Sybrand Bakker
  Senior Oracle DBA

• What is the password for 'oracle' user created during XE installation?

  Hi,
  What is the password for 'oracle' user automatically created when XE is installed?
  I installed XE on Linux and it's created under 'oracle' user, but I don't know 'oracle' password. So, I cannot stop TNS listener.
  During configuration, it prompted me to enter SYS and SYSADMIN password but it didn't ask me to enter 'oracle' user password.
  Please let me know or point me to the document.
  Thanks,
  N

  Hi Jari,
  I tried your suggestion, but it didn't work unfortunately.
  When I type (sudo su -oracle) as follows, it still prompts the password. When I hit Enter key w/o anything, it seems to proceed and the prompt shows up in the following line. So, I thought it was successful, but when I checked 'whoami', it's not logged in as 'oracle'.
  So, I created the password for 'oracle' and logged in as 'oracle' using a new password. Then, I stopped TNS listener to uninstall XE.
  It would be nice if it's documented in XE document somewhere... since it's created by XE installation, I assumed some kind of default password was used.
  Thanks,
  N

• Is GB 9.0.4 update today at App Store needed for all users, or just for Lion? Will it be in Software Update or is it paid update only? Please clarify

  Is the GB 9.0.4 update today at App Store needed for all users, or just for Lion? Will it be in Software Update or is it paid update only? Please clarify.

  I sure hope you are correct, Christoph. Seems one Mac site has questioned this also:
  http://www.tuaw.com/2011/07/11/iphoto-garageband-and-imovie-updated-in-mac-app-s tore/
  No iWeb updates either way so far. Not that I use it, just an observation.

• Always getting Invalid Pasword for Oracle User SYS

  Hello,
  I am installing IFS on Win XP.
  My database is on a remote machine.
  When I start with the configuration assistent of Oracle SMDK, he ask me to define the database to use.
  When I click on next I allways get the message Invallid pasword for Oracle user SYS
  I tested the connection via Oracle 9i client an that works properly.
  Can anyone help me please
  Thx in advantage.
  Database version: Oracle 9I Release 9.2.0.1.0
  Internet File system version: Oracle CM SDK

  I found the answer: getting the username with Get User Info on the User object gave me the username in a String. Using that, it worked like a charm.

• Env settings for oracle user ,  when installing Oracle on linux

  Good Morning Oracle Experts ;
  Basicallly my major subject is Electrical and Electronics
  I am very new to ORACLE/LINUX [ LEARNING  ORACLE  DBA ] Technology.
  I have THREE questions .. Please help me to understand oracle concepts.
  QUES  1 :
  i am getting confused about “setting bash_profile” and it’s contents
  I googled , it said to set env variables for oracle user. Ok .
  Can anyone explain clearly what exactly happens when “ setting bash_profile ” ?
  MY   BASH_PROFILE SETTINGS
  My  bash_profile having  following contents  :
  +# Oracle Settings+
  TMP=/tmp; export TMP
  TMPDIR=$TMP; export TMPDIR
  ORACLE_BASE=/u01/app/oracle; export ORACLE_BASE
  ORACLE_HOME=$ORACLE_BASE/product/10.2.0/db_1; export ORACLE_HOME
  ORACLE_SID=TSH1; export ORACLE_SID
  ORACLE_TERM=xterm; export ORACLE_TERM
  PATH=/usr/sbin:$PATH; export PATH
  PATH=$ORACLE_HOME/bin:$PATH; export PATH
  LD_LIBRARY_PATH=$ORACLE_HOME/lib:/lib:/usr/lib; export LD_LIBRARY_PATH
  CLASSPATH=$ORACLE_HOME/JRE:$ORACLE_HOME/jlib:$ORACLE_HOME/rdbms/jlib; export CLASSPATH
  +#LD_ASSUME_KERNEL=2.4.1; export LD_ASSUME_KERNEL+
  +if [ $USER = "oracle" ]; then+
  +if [ $SHELL = "/bin/ksh" ]; then+
  ulimit -p 16384
  ulimit -n 65536
  else
  ulimit -u 16384 -n 65536
  fi
  fi
  QUES  2 :
  Please  note  : This  url  says   lot of  env  variables
  http://www.idevelopment.info/data/Oracle/DBA_tips/Unix/UNIX_4.shtml
  2 . In my case , Why following env variables *[LD_ LIBRARY_PATH , CLASS_PATH , PATH]* are missing ?
  My  pc  showing  only  four  env variables   $ env  |  grep  -e  ORA  -e  TNS
  ORACLE_SID=TSH1
  ORACLE_BASE=/u01/app/oracle
  ORACLE_TERM=xterm
  ORACLE_HOME=/u01/app/oracle/product/10.2.0/db_1
  QUES 3 :
  *[ LD_ LIBRARY_PATH , CLASS_PATH , PATH ]*
  *Are  they  [ above mentioned  env  variables] necessary (or) not necessary for oracle DB ?*
  When listing  env  variables ,  why   they  are  not  displayed  ? (anything  wrong ) ?
  As  a  beginner , I expect  some  clean  technical  information    to  improve my knowledge  ..
  Thanks in advance ;

  Required Output
  *$ id*
  uid=502(oracle) gid=502(oinstall) groups=502(oinstall),503(dba)
  *$ env | sort*
  CLASSPATH=/u01/app/oracle/product/10.2.0/db_1/JRE:/u01/app/oracle/product/10.2.0/db_1/jlib:/u01/app/oracle/product/10.2.0/db_1/rdbms/jlib
  COLORTERM=gnome-terminal
  DBUS_SESSION_BUS_ADDRESS=unix:abstract=/tmp/dbus-s2yfterD04
  DESKTOP_SESSION=default
  DISPLAY=:0.0
  G_BROKEN_FILENAMES=1
  GDMSESSION=default
  GNOME_DESKTOP_SESSION_ID=Default
  GNOME_KEYRING_SOCKET=/tmp/keyring-oJUn3E/socket
  GTK_RC_FILES=/etc/gtk/gtkrc:/home/oracle/.gtkrc-1.2-gnome2
  HISTSIZE=1000
  HOME=/home/oracle
  HOSTNAME=linuxserver
  INPUTRC=/etc/inputrc
  LANG=en_US.UTF-8
  LESSOPEN=|/usr/bin/lesspipe.sh %s
  LOGNAME=oracle
  LS_COLORS=no=00:fi=00:di=00;34:ln=00;36:pi=40;33:so=00;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:ex=00;32:*.cmd=00;32:*.exe=00;32:*.com=00;32:*.btm=00;32:*.bat=00;32:*.sh=00;32:*.csh=00;32:*.tar=00;31:*.tgz=00;31:*.arj=00;31:*.taz=00;31:*.lzh=00;31:*.zip=00;31:*.z=00;31:*.Z=00;31:*.gz=00;31:*.bz2=00;31:*.bz=00;31:*.tz=00;31:*.rpm=00;31:*.cpio=00;31:*.jpg=00;35:*.gif=00;35:*.bmp=00;35:*.xbm=00;35:*.xpm=00;35:*.png=00;35:*.tif=00;35:
  MAIL=/var/spool/mail/oracle
  ORACLE_BASE=/u01/app/oracle
  ORACLE_HOME=/u01/app/oracle/product/10.2.0/db_1
  ORACLE_SID=TSH1
  ORACLE_TERM=xterm
  PATH=/u01/app/oracle/product/10.2.0/db_1/bin:/usr/sbin:/usr/kerberos/bin:/usr/local/bin:/usr/bin:/bin:/usr/X11R6/bin:/home/oracle/bin
  PWD=/home/oracle
  SESSION_MANAGER=local/linuxserver:/tmp/.ICE-unix/4394
  SHELL=/bin/bash
  SHLVL=2
  SSH_AGENT_PID=4450
  SSH_ASKPASS=/usr/libexec/openssh/gnome-ssh-askpass
  SSH_AUTH_SOCK=/tmp/ssh-cbAqMq4394/agent.4394
  TERM=xterm
  TMP=/tmp
  USER=oracle
  _=/usr/bin/env
  WINDOWID=42039592
  XAUTHORITY=/home/oracle/.Xauthority

• Password for Oracle user , sys , system , saprpd

  Hi All ,
  I just join a new company as sys admin . I tried to search password for Oracle user sys , system and saprd in my company password file . Those users password are not stored.
  Am I supposed to know those oracle user password ? If yes , Can I find them in my Unix system or sap application ?
  Please help !
  Felix

  It is not possible to determine the passwords if you don't know them. But perhaps note 562863 and the described default passwords are useful. Furthermore you can always change passwords if you have SYSDBA privilege using "alter user ... identified by ..." or "brconnect -f chpass".
  Regards
  Martin

• Need to know right content for Oracle Financials

  Hi,
  Am pretty new to oracle financials can anyone suggest where can i find the proper reading material to start off for Oracle Financials.Please suggest me.
  Thanks,
  Krishna.

  All Oracle EBS Docs can be found at http://www.oracle.com/technetwork/documentation/applications-167706.html
  Please also see this link -- https://forums.oracle.com/forums/search.jspa?threadID=&q=How+to+become+financial+consultant&objID=c3&dateRange=all&userID=&numResults=15&rankBy=10001
  Thanks,
  Hussein

• How to enable Scheduling in Discoverer for Oracle users?

  Hi,
  For accessing discoverer, our users are uaing Oracle usernames.
  how can i enable scheduling for them?
  we have already enabled scheduling for users who use database login to use discoverer. but not able to link oracle users to database.
  are they linked through the responsibilities they use for logging?
  thanks,
  Gayatri

  Hi Gayatri
  If you're working in Apps mode and logging in with an E-Business Suite user account then by default the database account that will be used to access the database is APPS. You should not change this and there is nothing that you need to do to set this up apart from grant the user permission to schedule. You do that on the Scheduled Workbooks tab of the Privileges dialog box after choosing Tools | Privileges in the Administrator tool.
  On a non-E-Business Suite application you can either grant privileges direct to the user or you can specify a proxy user for storing the scheduled results. In order to create such a proxy user you would need to run the script called batchusr.sql which you will find in this folder: $ORACLE_HOME\BIToolsHome_1\discoverer\util on the Windows machine where you have installed the Discoverer Administrator tool. In most cases this will be: C:\Oracle\BIToolsHome_1\discoverer\util
  The following link will help considerably: http://download.oracle.com/docs/html/B13916_04/scheduled_workbooks.htm#i1011948
  Another method would be to use Oracle's concurrent manager to schedule the reports. My good friend Rod West has an article on this which I am hosting here on my website: http://ascbi.com/downloads/Third%20Party%20Documents/Scheduling%20through%20Concurrent%20Manager.pdf
  I hope this helps
  Best wishes
  Michael

• What do I need for Oracle Http Server with mod_plsql on Linux 64bit?

  I am trying to get the OHS onto a linux box but I am not quite sure I am installing the correct thing!!
  I currently have a windows box running the 10g Application server but everything seems to have changed since then and there seems to be several different things to do with the Fusion Middleware and stuff. I've tried to find an overview in plain english of what all these things are but all I can find are lots of marketing buzzwords!
  All in need to to be able to run the OHS with the mod_plsql so I can run my apex application. I'd be greatfull if someone could point me in the right direction for what I need to install!
  The box it is going on is a CentOS Linux 64bit machine. I've download and installed Oracle WebLogic Server 11g Rel 1 (10.3.3) using the generic installer for the 64 bit java but there seems to be no http server despite it saying there is! Most likely I am doing something wrong but the installer finishes successfully but nothing is running on port 7001.
  Do I actually need the WebTier instead? Is that the best solution for running the OHS with mod_plsql? Do I need the WebLogic install as well? Unfortunately I am fairly new to Linux as well which isn't helping!!
  thanks for any help
  Robert

  Well, you have two options:
  - Use the OHS from the OFM WebTier Utilities distro. (To use 11.1.1.3 version, you need both the 11.1.1.2 and 11.1.1.3 distros)
  - Use the OHS from the DB Companion Disk distro.
  WebLogic Server is a Java EE application with an HTTP server included, but not intended to be used as a replacement of OHS/Apache. It doesn't support mod's...
  HTH,
  --olaf                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               

• Ulimit for oracle user

  OL 5.6 x86-64, running under VirtualBox
  Background
  I've built quite a few sandbox servers under Vbox, and always loaded the necessary packages with a 'yum install oracle-validated'. Also using a standard template .bash_profile, that includes this information regarding ulimit
  if [ $USER = "oracle" ]; then
    if [ $SHELL = "/bin/ksh" ]; then
      ulimit -p 16384
      ulimit -n 65536
    else
      ulimit -u 16384 -n 65536
    fi
  fi
  #no problems with any of the above
  Issue
  Now I've decided to build a box that mimics one of my production servers as closely as I can get it. To that end, instead of installing 'oracle-validated', I went to the production box and captured the output of 'rpm -qa', then edited that output turn each line into a 'yum -y install ...' command, and executed the result on the vm.
  Now, when I connect as 'oracle' I get
  -bash: ulimit: max user processes: cannot modify limit: Operation not permittedI'm not sure of what I could have done differently this time to result in this behavior.

  The ulimit facility provides hard and soft limits. With the ulimit command, you can change your soft limits, up to the maximum set by the hard limits.
  To see current hard and soft limits:
  ulimit -Ha
  ulimit -Sa
  Account specific limits are set in /etc/security/limits.conf. You will most likely need to increase the limits of the Oracle user. In particular add the following:
  oracle soft nofile 131072
  oracle hard nofile 131072
  oracle soft nproc 131072
  oracle hard nproc 131072
  oracle soft core unlimited
  oracle hard core unlimited
  oracle soft memlock 50000000
  oracle hard memlock 50000000
  The oracle-validated package does more than just triggering the installation of additional packages. It also sets various system kernel and oracle account parameters. For details:
  # wget http://public-yum.oracle.com/repo/OracleLinux/OL5/latest/x86_64/oracle-validated-1.1.0-17.el5.x86_64.rpm
  # rpm2cpio oracle-validated-1.1.0-17.el5.x86_64.rpm | cpio -idmv
  Then analyze the files.

• Authorization-problem for standard users when running WDR_TEST_ZCI

  hi
  we've developed a WDA application incorporating several interactive forms. it all runs fine in QA--environment when a user with developer-role are running the application, but when standard users are running it, it fails.
  the same happens with the demo-app WDR_TEST_ZCI.
  i so belive this to be caused by missing authorizations for the users. can anyone shed any light on which these might be?
  the error as reported in the browser:
  The following error text was processed in the system Q97 : Access via 'NULL' object reference not possible.
  The error occurred on the application server xx-x168_Q97_05 and in the work process 0 .
  The termination type was: RABAX_STATE
  The ABAP call stack was:
  Method: PARSE_XML_SCHEMA of program CL_WD_ADOBE_SERVICES==========CP
  Method: GET_SCHEMA_VERSION of program CL_WD_ADOBE_SERVICES==========CP
  Method: CONSTRUCTOR of program CL_WD_ADOBE_SERVICES==========CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/LADOBE==================CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/LADOBE==================CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/L8STANDARD==============CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/L8STANDARD==============CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/L8STANDARD==============CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/L7STANDARD==============CP
  Method: IF_WDR_VIEW_ELEMENT_ADAPTER~SET_CONTENT of program /1WDA/L8STANDARD==============CP
  any input appreciated.
  cheers
  tom

  Hi Tom,
  When you are familiar with authorizations in PFCG trabsaction you are finaliar with S_DEVELOP if not ask the authorization team on your project.
  Basically this authorization object handles the read/write etc authorization related to devlopment objects. If you implement Adobe forms you will probably develop your own forms or at least copy the SAP forms to customer namespace.
  For Adobe you will therefore have 2 custom development objects (1 for the form and 1 for the interface that is automatically generated). The end-user shoulf have at least READ access to these objects. If not the portal will trow an error on this.
  To determine the tech names of the objects find the form and related interface in transaction SFP. These should be inserted in the object S_DEVELOP in the role for the end users.
  You may want to consider to put the value Z* in the object which will give authorization for all the custom developed objects.
  If you can't find the object reply again and i will send a screenshot.
  Finally, make use of the splended transaction ST01!! It will make your life a lot more easy in portal! It traces all the authorizations needed and missing for any user you specify. After activating the trace and running a portal scenario the log will tell you want went OK and what not on an authorization object level.
  Good luck,
  Thomas
  ps. Thanks for the appreciation you gave in my other thread. Now we have the answers in both threads as well. Take Care.