19C将密码文件放置在磁盘组
---------------------------------------------------------------------------------
测试环境:19C ASM+单实例
--查看当前密码文件信息
[oracle@dbserver admin]$ srvctl config database -db orcl -verbose
Database unique name: orcl
Database name: orcl
Oracle home: /u01/app/oracle/product/19.3.0/db_1
Oracle user: oracle
Spfile: +DATA/orcl/spfileorcl.ora
Password file:
Domain:
Start options: open
Stop options: immediate
Database role: PRIMARY
Management policy: AUTOMATIC
Disk Groups: DATA,FRA
Services:
OSDBA group:
OSOPER group:
Database instance: orcl
--当前密码文件存在OS中
[oracle@dbserver dbs]$ pwd
/u01/app/oracle/product/19.3.0/db_1/dbs
[oracle@dbserver dbs]$ ll orapworcl
-rw-r----- 1 oracle oinstall 11264 Jun 3 16:12 orapworcl
--移除当前的密码文件
[oracle@dbserver dbs]$ mv orapworcl orapworcl.bak
--新建密码到磁盘组
[oracle@dbserver admin]$ orapwd file='+data/orcl/orapworcl' dbuniquename=orcl format=12
Enter password for SYS:
OPW-00010: Could not create the password file.
ORA-15056: additional error message
ORA-06512: at line 4
ORA-15221: ASM operation requires compatible.asm of 12.1.0.0.0 or higher
ORA-06512: at "SYS.X$DBMS_DISKGROUP", line 679
ORA-06512: at line 2
--报错当前DATA磁盘组的ASM兼容性不对,修改DATA磁盘组的ASM兼容性
[grid@dbserver ~]$ asmcmd
ASMCMD> setattr -G data compatible.asm 12.1.0.0.0
--再次尝试创建密码文件到+DATA磁盘组
[oracle@dbserver admin]$ orapwd file='+data/orcl/orapworcl' dbuniquename=orcl format=12
Enter password for SYS:
--再次查看数据库密码文件信息
[oracle@dbserver admin]$ srvctl config database -db orcl -verbose
Database unique name: orcl
Database name: orcl
Oracle home: /u01/app/oracle/product/19.3.0/db_1
Oracle user: oracle
Spfile: +DATA/orcl/spfileorcl.ora
Password file: +DATA/orcl/orapworcl
Domain:
Start options: open
Stop options: immediate
Database role: PRIMARY
Management policy: AUTOMATIC
Disk Groups: DATA,FRA
Services:
OSDBA group:
OSOPER group:
Database instance: orcl
--到磁盘组中查看密码文件是否存在
ASMCMD> pwd
+data/orcl
ASMCMD> ls
CONTROLFILE/
DATAFILE/
ONLINELOG/
PARAMETERFILE/
PASSWORD/
TEMPFILE/
orapworcl
spfileorcl.ora
--修改SQLNET.ORA验证密码文件是否生效,加入如下配置并保存
SQLNET.AUTHENTICATION_SERVICES=(NONE)
--以OS认证登录不再允许
[oracle@dbserver admin]$ sqlplus / as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Fri Jun 5 16:59:57 2020
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
ERROR:
ORA-01017: invalid username/password; logon denied
--尝试使用用户密码登录
[oracle@dbserver admin]$ sqlplus sys/oracle as sysdba
SQL*Plus: Release 19.0.0.0.0 - Production on Fri Jun 5 17:00:45 2020
Version 19.3.0.0.0
Copyright (c) 1982, 2019, Oracle. All rights reserved.
Connected to:
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
SQL>
--THE END
|