oracle 身份認證相關引數
(1)SQLNET.AUTHENTICATION_SERVICES
此引數在目錄 $ORACLE_HOME/network/admin/sqlnet.ora下。Oracle聯機文件中對此引數的描述如下:
Purpose
Use the parameter SQLNET.AUTHENTICATION_SERVICES to enable one or more authentication services. If authentication has been installed, it is recommended that this parameter be set to either none or to one of the authentication methods.
Default
None
Values
Authentication Methods Available with Oracle Net Services:
None for no authentication methods, including Windows native operating system authentication (to use Windows native operating system authentication, set this parameter to nts). When SQLNET.AUTHENTICATION_SERVICES is set to none, a valid user name and password can be used to access the database.
all for all authentication methods
ntsfor Windows NT native authentication
Authentication Methods Available with Oracle Advanced Security:
kerberos5 for Kerberos authentication
radius for RADIUS authentication
dcegssapi for DCE GSSAPI authentication
For example, for all clients and servers using Kerberos authentication, the sqlnet.ora parameter must be set as follows:
SQLNET.AUTHENTICATION_SERVICES=(KERBEROS5)
若沒有其他認證方式(Authentication Methods)的設定
A.在windows平臺此值應設為 NTS 或 ALL 否則將無法使用作業系統認證登入資料庫(conn / as sysdba),當然也可以設定為NONE或者不設定通過密碼認證登入。
B.在Linux 平臺此值應設為 NONE或者不對此引數進行設定,否則也將無法使用作業系統認證登入資料庫。
設定此引數為ALL或者其他(如KERBEROS5)會得到如下錯誤
SQL> conn system/oracle@arron
ERROR:
ORA-12641: Authentication service failed to initialize 驗證服務無法初始化
其他參考檔案:
SQLNET.AUTHENTICATION_SERVICES= (NTS) 解釋
(2)REMOTE_LOGIN_PASSWORDFILE
Sqlnet.authentication_services=... Take into effect after restart sqlplus.
Parameter REMOTE_LOGIN_PASSWORDFILE is a initialization parameter, and will take into effect after restart database.
Values:(oracle 11g release 1(11.1))
shared
One or more databases can use the password file. The password file can contain SYS as well as non-SYS users.
exclusive
The password file can be used by only one database. The password file can contain SYS as well as non-SYS users.
none
Oracle ignores any password file. Therefore, privileged users must be authenticated by the operating system.
Note:
When REMOTE_LOGIN_PASSWORDFILE is set to either exclusive or shared, but the password file does not exist, then the behavior is the same as setting REMOTE_LOGIN_PASSWORDFILE to none.
(oracle 10g release 2 (10.2))
REMOTE_LOGIN_PASSWORDFILE specifies whether Oracle checks for a password file.
Values:
NONE
Oracle ignores any password file. Therefore, privileged users must be authenticated by the operating system.
SHARED
One or more databases can use the password file. The password file can contain SYS as well as non-SYS users.
Note:
The value EXCLUSIVE is supported for backward compatibility. It now has the same behavior as the value SHARED.
其他參考文章:
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/20936835/viewspace-690121/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- Oracle安裝相關Linux引數(轉)OracleLinux
- Oracle direct path read相關隱含引數Oracle
- Oracle undo保留時間的幾個相關引數Oracle
- pga相關引數
- 增強版實名認證介面-Java身份證實名認證介面程式碼-身份認證Java
- 【PARANETERS】Oracle異常恢復相關的隱含引數Oracle
- Java身份證實名認證、身份證識別介面讓您認證任性的“懶”Java
- wifi認證的相關知識WiFi
- MySQL效能相關引數MySql
- PostgreSQL AutoVacuum 相關引數SQL
- node.js -- 身份認證Node.js
- C++身份核驗介面程式碼、身份證OCR、身份證實名認證APIC++API
- Spark的相關引數配置Spark
- MySQL 連線相關引數MySql
- Java身份證實名認證介面解鎖認證新速度Java
- 資料庫管理-第123期 Oracle相關兩個引數(202301205)資料庫Oracle
- MongoDB身份認證機制揭秘!MongoDB
- ORACLE並行相關的引數Oracle並行
- 邊緣認證和與令牌無關的身份傳播
- Oracle11g 自動化建庫及調整相關引數Oracle
- 4.2.10.1 Oracle Restart 相關變數配置OracleREST變數
- C++身份證二要素實名認證api、實名認證介面C++API
- springboot整合shiro實現身份認證Spring Boot
- 使用 JWT 認證使用者身份JWT
- C++批次核驗身份證真偽、實名認證介面、身份證識別C++
- mysql relay log相關引數說明MySql
- redis持久化相關引數解釋Redis持久化
- [20191204]hugepage相關引數含義.txt
- openGauss執行緒池相關引數執行緒
- [20220913]hugepage相關引數含義.txt
- Oracle 認證下載Oracle
- go-kit微服務:JWT身份認證Go微服務JWT
- WebApi的建立,部署,Oauth身份認證(一)WebAPIOAuth
- PHP 使用 jwt 使用者身份認證PHPJWT
- KubeCube 使用者管理與身份認證
- 網路實名制、電商實名認證、身份證實名認證介面
- Oracle相關命令Oracle
- PostgreSQL並行查詢相關配置引數SQL並行
- 《數字身份驗證指南》草案中提議禁用基於簡訊的雙因子認證