How to set Password for sqlplus /as sysdba

oracleSecurity

I am new to Oracle. I would like to know how to set login password for sqlplus / as sysdba in oracle 11g.

I want to set the password for my next login. I don't want to login as sqlplus / as sysdba since anyone can log in using sqlplus / sysdba and can easily access the data or change password for the existing user.I need to restrict the login.

Say in a company 5 peoples are working and they are accessing the server with Admin userid and password to login the system and if some-one changes some modifications in the server using sqlplus / as sysdba it will affect the rest of the peoples right so in-order to avoid we need to restrict the login by setting password.

Best Answer

You'll need to decide whether you want to use OS authentication or use a password file. See http://docs.oracle.com/cd/E11882_01/server.112/e25494/dba006.htm#i1006628 to help you decide.

Will users administer the database by first logging in to the database server using eg ssh? Then you can use OS authentication.

Best practice for OS authentication: No-one should be logging in as the oracle OS user. Each DBA should have their own OS account and login as that. Their OS account should be a member of the OS DBA group (remember that only members of the OS DBA group can login using sqlplus / as sysdba).

If you want to allow remote administration, then you'll either need a secure connection to the database (just like SSH provides that to the server when administering locally) or you'll need to use a password file.

Related Solutions

Oracle 11g SYSDBA login

It depends on the GUI but they all should have a way of selecting the SYSDBA privilege. Toad has it appear as a drop-down box called 'Connect as:' as does Oracle Enterprise Manager. For SQL Developer you use the 'Role' box when creating a new connection.

As far as / as sysdba is concerned it just means that operating system authentication is being used so no password is needed. You can only use it if you are logged in as the oracle user or a member of the dba group (or for Windows, I believe as an administrator).

When you grant a user the SYSDBA privilege it only means they have the option to log in with the SYSDBA privilege and not that they will have dba privileges when they log in normally. The same is true for the SYS user: you can log in as SYS without the SYSDBA privilege and so lack the ability to shutdown the database, for example.

Unable to login oracle as sysdba

The problem was I was using the variable TWO_TASK. Once I unset the variable, I nolonger had issues logging in a sysdba.

$ unset TWO_TASK
$ sqlplus /nolog

SQL*Plus: Release 11.2.0.1.0 Production on Wed Feb 6 02:51:55 2013

Copyright (c) 1982, 2009, Oracle.  All rights reserved.

SQL> conn / as sysdba
Connected to an idle instance.
SQL> startup;
ORACLE instance started.

Total System Global Area 1707446272 bytes
Fixed Size          1336988 bytes
Variable Size         989858148 bytes
Database Buffers      704643072 bytes
Redo Buffers           11608064 bytes
Database mounted.
Database opened.
SQL> exit

I found the answer here.

Best Answer

Related Solutions

Oracle 11g SYSDBA login

Unable to login oracle as sysdba

Related Question