stackoom
  简体   繁体   中英

Oracle DB 12c: sqlplus as sysdba causes ORA-01017

 原文  2016-11-30 18:59:09       oracle/ oracle12c

Question

Good day. If i do sqlplus user/oracle@db i have successfull connection with db.

If i do sqlplus user/oracle@db as sysdba i have error ORA-01017.

But at the server this command executes successfully.

My tnsnames.ora: 

db =
  (DESCRIPTION =
    (ADDRESS_LIST =
      (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.100.175)(PORT = 1521))
    )
    (CONNECT_DATA =
        (SERVER = DEDICATED)
        (SERVICE_NAME = orcl)
    )
  )

Also i can't do sqlplus /@db as sysdba . And after sqlplus user@db as sysdba i enter a password and have this error too. At the server this executes without errors. What is the problem?

Oracle VirtualBox with Win2008, Oracle 12c

2 answers

solution1
 1  2016-11-30 19:06:46

You can use as sysdba only if permission has been granted. Run 

GRANT SYSDBA TO user;

in order to permit that.

sqlplus /@db as sysdba is not possible from a remote machine - this would open the database to entire world where everybody could connect with SYSDBA privileges without any password!

sqlplus /@db as sysdba is allowed only from local machine because there you are already authenticated (typically) as OS-User "oracle".

solution2
 0  2016-12-01 10:54:14

It is definitively possible to connect as SYSDBA from a remote machine, as you were doing: specifying a password, and not relying on the OS authentication mechanism (the operative system auth is not involved in the course of a remote authentication such this).

Only, you have to activate the password-file mechanism (that is disabled by default).

To do so, change the value of the parameter remote_login_passwordfile to either shared or exclusive . If it is shared it works for all databases run on that machine and can only contain the SYS user (while if is it exclusive it can contain any user and its scope is the target database).

Important : users are added to the password file only after the password-file was enabled and after they're granted the SYSDBA or sysoper privilege; ie pre-existing users won't be automatically added (!), you have to re-grant the SYSDBA or SYSOPER role to them.

Finally this view lets you peek at the logical content of the password file 

select * from v$pwfile_users;

See Creating and Maintaining a Password File for more details.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Oracle 12c : Connecting through remote machine as SYSDBA user throws error ORA: 01017 Oracle SQLPlus ORA-01017 invalid credentials when specifying schema ora-01017 with ODP.net and NTS as sysdba Oracle 12c default pluggable DB in sqlplus cant connect to oracle - ora-01017 Oracle sqlplus 12c error with queries ORA-01017 Invalid Username/Password when connecting to new non-SYSDBA user Ora-01017 on oracle 12.2.0.1 - Not able to set case insensitive password ORA-01017 invalid username/password as default role oracle developer ETL Oracle Connection error ORA-01017: invalid username/password;
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM