oracle 身份認證相關引數
(1)SQLNET.AUTHENTICATION_SERVICES
此引數在目錄 $ORACLE_HOME/network/admin/sqlnet.ora下。Oracle聯機文件中對此引數的描述如下:
Purpose
Use the parameter SQLNET.AUTHENTICATION_SERVICES to enable one or more authentication services. If authentication has been installed, it is recommended that this parameter be set to either none or to one of the authentication methods.
Default
None
Values
Authentication Methods Available with Oracle Net Services:
None for no authentication methods, including Windows native operating system authentication (to use Windows native operating system authentication, set this parameter to nts). When SQLNET.AUTHENTICATION_SERVICES is set to none, a valid user name and password can be used to access the database.
all for all authentication methods
ntsfor Windows NT native authentication
Authentication Methods Available with Oracle Advanced Security:
kerberos5 for Kerberos authentication
radius for RADIUS authentication
dcegssapi for DCE GSSAPI authentication
For example, for all clients and servers using Kerberos authentication, the sqlnet.ora parameter must be set as follows:
SQLNET.AUTHENTICATION_SERVICES=(KERBEROS5)
若沒有其他認證方式(Authentication Methods)的設定
A.在windows平臺此值應設為 NTS 或 ALL 否則將無法使用作業系統認證登入資料庫(conn / as sysdba),當然也可以設定為NONE或者不設定通過密碼認證登入。
B.在Linux 平臺此值應設為 NONE或者不對此引數進行設定,否則也將無法使用作業系統認證登入資料庫。
設定此引數為ALL或者其他(如KERBEROS5)會得到如下錯誤
SQL> conn system/oracle@arron
ERROR:
ORA-12641: Authentication service failed to initialize 驗證服務無法初始化
其他參考檔案:
SQLNET.AUTHENTICATION_SERVICES= (NTS) 解釋
(2)REMOTE_LOGIN_PASSWORDFILE
Sqlnet.authentication_services=... Take into effect after restart sqlplus.
Parameter REMOTE_LOGIN_PASSWORDFILE is a initialization parameter, and will take into effect after restart database.
Values:(oracle 11g release 1(11.1))
shared
One or more databases can use the password file. The password file can contain SYS as well as non-SYS users.
exclusive
The password file can be used by only one database. The password file can contain SYS as well as non-SYS users.
none
Oracle ignores any password file. Therefore, privileged users must be authenticated by the operating system.
Note:
When REMOTE_LOGIN_PASSWORDFILE is set to either exclusive or shared, but the password file does not exist, then the behavior is the same as setting REMOTE_LOGIN_PASSWORDFILE to none.
(oracle 10g release 2 (10.2))
REMOTE_LOGIN_PASSWORDFILE specifies whether Oracle checks for a password file.
Values:
NONE
Oracle ignores any password file. Therefore, privileged users must be authenticated by the operating system.
SHARED
One or more databases can use the password file. The password file can contain SYS as well as non-SYS users.
Note:
The value EXCLUSIVE is supported for backward compatibility. It now has the same behavior as the value SHARED.
其他參考文章:
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/20936835/viewspace-690121/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- Linux 核心引數 和 Oracle相關引數調整LinuxOracle
- Linux 核心引數及Oracle相關引數調整LinuxOracle
- Oracle sqlnet.ora相關認證問題OracleSQL
- 【Oracle】-【sqlplus相關】-serveroutput引數OracleSQLServer
- oracle 安裝相關引數設定Oracle
- oracle相關的linux核心引數OracleLinux
- (轉)Linux 核心引數及Oracle相關引數調整LinuxOracle
- 增強版實名認證介面-Java身份證實名認證介面程式碼-身份認證Java
- ORACLE10G認證考試相關問題Oracle
- Kerberos身份認證方案ROS
- Oracle安裝相關Linux引數(轉)OracleLinux
- 【轉】Oracle安裝相關Linux引數OracleLinux
- oracle sga配置相關的os 核心引數Oracle
- 網路身份認證——Kerberos配置及認證ROS
- wifi認證的相關知識WiFi
- CE認證相關指令(轉載)
- node.js -- 身份認證Node.js
- 使用Oracle外部身份認證登入資料庫Oracle資料庫
- 使用Oracle外部身份認證增強安全性Oracle
- MySQL效能相關引數MySql
- 歸檔相關引數
- Oracle direct path read相關隱含引數Oracle
- Oracle的AMM和ASMM以及相關引數探究OracleASM
- 聊聊Oracle Optimizer相關的幾個引數(中)Oracle
- 聊聊Oracle Optimizer相關的幾個引數(下)Oracle
- Oracle查詢優化器的相關引數Oracle優化
- Oracle優化相關的一些引數Oracle優化
- C++身份核驗介面程式碼、身份證OCR、身份證實名認證APIC++API
- os認證、口令檔案認證及兩個引數【轉】
- Linux核心引數(如kernel.shmmax)及Oracle相關引數調整LinuxHMMOracle
- Oracle undo保留時間的幾個相關引數Oracle
- linux 跟oracle相關的系統核心引數?LinuxOracle
- Oracle Lob型別相關引數以及效能影響Oracle型別
- Oracle GoldenGate系統之----相關引數說明OracleGo
- MySQL 連線相關引數MySql
- MySQL slow log相關引數MySql
- Spark的相關引數配置Spark
- WebApi身份認證解決方案(1):Basic基礎認證WebAPI