Home > Developer > Oracle

Oracle database any user password can be logged in with the SYSDBA role

Source: Internet
Author: User
Tags sqlplus
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

* Related environment: Windows 10, 64-bit operating system, Oracle 11gr2;toad for Oracle12.1

Recently in the Learning Oracle database, using Toad for Oracle to view the database information, found in the SYSDBA role in the database, regardless of the input of any password, can connect to the database, thinking that the database is out of trouble, with doubt, find data. Found there is a lot of knowledge, the following simple description.

Oracle Certified users are available in two ways: operating system authentication and password Authentication . Operating system authentication is also called local authentication.

    • Operating system certification: Oracle believes that the operating system users are reliable, and since you can log into the operating system, you can also log on to the database;
    • Password file authentication: Oracle considers the operating system user to be unreliable, and if you want to access the database, you must use password authentication again.

(a) Operating system certification

To use operating system authentication, you need to set two:

(1) Set in the Sqlnet.ora file:

Sqlnet. Authentication_services= (NTS)

As (line 8th):

NTS refers specifically to Windows systems.

(2) Set up the ORA_DBA group in Windows, and then add users who need to use the operating system authentication to this group, which is opened in the following way:

Group, Local Users and groups, Computer Management, management tools, Control Panel. After opening we can see the relevant information:

To open the ORA_DBA user group, you can see:

This explains why we are still able to log in when logging in to the database using client tools such as Toad for Oracle or Sqlplus: When we install the database, we use the default installation method, log in to the database using the operating system authentication, So when using the SYSDBA authentication login, you can log in to the database, regardless of the password right or wrong. one thing to note here is that the user logged in using the operating system user group ORA_DBA will be logged in with the operating system user, if the user is not in ORA_DBA,

After logging in, you can execute the following statement in SQL Plus Select User from dual to view the current user:

The user who discovered the database is SYS, not Scott. After many tests, it was found that logging from CMD to Sqlplus/as Sysdba was the same result. Finally, the user of the final database is SYS regardless of which account is used, as long as the as SYSDBA is logged in to the database.

(b) Password file authentication

Oracle database any user password can be logged in with the SYSDBA role

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to create user in mysql database with password multi user role based login in php with mysql drupal user is logged in change password in oracle database user role management in codeigniter how to alter user password in oracle how to reset user password in oracle
Related Article
Deep understanding of Oracle String Functions translate ()
Oracle SQL Tuning Database optimization steps Graphic tutorial
Oracle database, numbers Force 2 decimal places to display
ORACLE: Convert milliseconds to date, get information for one...
An array of Oracle
[Oracle] The CHR function of Oracle returns

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More