Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need help, restrict DBA roles in Sun Solaris Server
Operating Systems Solaris Need help, restrict DBA roles in Sun Solaris Server Post 302087427 by Aditya Purwanto on Thursday 31st of August 2006 10:10:14 PM
Old 08-31-2006
Need help, restrict DBA roles in Sun Solaris Server
Dear forum,

I have Oracle 9i/10g2R and sun solaris server I don't realy sure wheter it's sun solaris 8, 9 or 10.

Here is the background:
OS : SunOS 8/9/10
Oracle engine : 9i / 10g2R
--> located in server SunOS
Remote Komputer : Windows XP, I use SSH to remote to the server
User : DBA1, ADMINISTRATOR or SYS

My problem is, I need to granted DBA1 the roles for DBA, so he has full access to the database. He remote to the database using listener.ora (I mean remote to the database not to the server).

In the other hand, I can remote to the server and run the database from the server that I already remote.

I need to grant DBA1 to be able to create tablespace and datafile (I have stored procedure that automaticaly do this).

############## My Problem I put bellow ###################
What I want to know is how can I only allow DBA1 to create and alter tablespace and datafile only from stored procedure or he remote to the server. So if DBA1 remote to the database using listener.ora not remote to the server using ssh or using stored procedure, he can't create or alter tablespace and datafile.
###################################################

Thanks in advance for the help

Regards,
Aditya Purwanto
Edit/Delete Message
 

8 More Discussions You Might Find Interesting

1. Solaris

Sun Java Portal Server 6 and Solaris 10

Hello, I have recently installed Solaris 10 OE in an Ultra-10 stand alone workstation. I would like to know where can I find information regarding which version of Sun Web technologies such as: Sun Java Portal 6.x Sun Java Web Server 6.x Sun Java Identity Server Sun Java Directory... (0 Replies)
Discussion started by: mosqueda_albert
0 Replies

2. UNIX for Dummies Questions & Answers

Monitoring Server Jobs, Roles, and Performance via Command Line

Hey guys, I have an up and coming interview (tomorrow) and during the discussion via phone I was asked if I was familiar with "monitoring jobs in Linux/UNIX using the command line." Now, I currently work in the MS world and I am underneath the NOC hear at my company so I have had no reason to do... (2 Replies)
Discussion started by: Steve M
2 Replies

3. Solaris

Getting Server Model from Sun Solaris

What command to get server model from a solaris 5.10? (4 Replies)
Discussion started by: ryandegreat25
4 Replies

4. Solaris

How to boot a sun Solaris server?

Hi everyone, I have searched on google and sun documentation but it's still not clear for me; how do we boot a sun Solaris server? I know what to do but only from this step: 1- start /SYS 2- start /SP/console The system go to to the prompt OK, then we use the BOOT command. My... (9 Replies)
Discussion started by: adilyos
9 Replies

5. UNIX and Linux Applications

Oracle Database - How to check if user roles and system roles are separated?

I have these two table. How do I see if user roles and system roles are seperated? SQL> desc DBA_ROLES; Name Null? Type ----------------------------------------- -------- ---------------------------- ROLE NOT NULL... (1 Reply)
Discussion started by: alvinoo
1 Replies

6. Solaris

Backup sun Solaris Server

hello, I need to make a backup for my sever Sun Solaris 10, is there any propositions to realize this , or a control line assembly to have a copy of my server. waiting for your reply thank you in advance (5 Replies)
Discussion started by: Laila
5 Replies

7. Solaris

Sun Server and Solaris 7 Inquiry

Greetings! Will be firing up the good ole pizza box, soon. Does anyone know if Solaris 7 is still okay to use? Last time I attempted was 2006. Thank you in advance, ControlTomato (6 Replies)
Discussion started by: ControlTomato
6 Replies

8. Solaris

Oracle DBA licensing on Solaris 11 LDOMS

My understanding is that Oracle DB licensing is based on number of cores etc. If you use virtual machines (e.g.ldoms) you need to partition it properly otherwise, in theory you have to pay based on the host machine. Can anyone confirm I'm right here? And explain it in bit more detail (i.e.... (8 Replies)
Discussion started by: psychocandy
8 Replies

LEARN ABOUT DEBIAN

slapo-translucent

SLAPO-TRANSLUCENT(5)						File Formats Manual					      SLAPO-TRANSLUCENT(5)

NAME

       slapo-translucent - Translucent Proxy overlay to slapd

SYNOPSIS

       /etc/ldap/slapd.conf

DESCRIPTION

       The  Translucent Proxy overlay can be used with a backend database such as slapd-bdb(5) to create a "translucent proxy".  Entries retrieved
       from a remote LDAP server may have some or all attributes overridden, or new attributes added, by entries  in  the  local  database  before
       being presented to the client.

       A  search  operation  is  first	populated  with  entries from the remote LDAP server, the attributes of which are then overridden with any
       attributes defined in the local database. Local overrides may be populated with the add, modify , and modrdn operations, the use  of  which
       is restricted to the root user.

       A  compare  operation will perform a comparison with attributes defined in the local database record (if any) before any comparison is made
       with data in the remote database.

CONFIGURATION

       The Translucent Proxy overlay uses a proxied database, typically a (set of) remote LDAP server(s), which is  configured	with  the  options
       shown in slapd-ldap(5), slapd-meta(5) or similar.  These slapd.conf options are specific to the Translucent Proxy overlay; they must appear
       after the overlay directive that instantiates the translucent overlay.

       translucent_strict
	      By default, attempts to delete attributes in either the local or remote databases will be silently ignored.  The	translucent_strict
	      directive causes these modifications to fail with a Constraint Violation.

       translucent_no_glue
	      This configuration option disables the automatic creation of "glue" records for an add or modrdn operation, such that all parents of
	      an entry added to the local database must be created by hand. Glue records are always created for a modify operation.

       translucent_local <attr[,attr...]>
	      Specify a list of attributes that should be searched for in the local database when used in a search filter. By default, search fil-
	      ters are only handled by the remote database. With this directive, search filters will be split into a local and remote portion, and
	      local attributes will be searched locally.

       translucent_remote <attr[,attr...]>
	      Specify a list of attributes that should be searched for in the remote database when used in a search filter. This directive comple-
	      ments the translucent_local directive. Attributes may be specified as both local and remote if desired.

       If  neither translucent_local nor translucent_remote are specified, the default behavior is to search the remote database with the complete
       search filter. If only translucent_local is specified, searches will only be  run  on  the  local  database.  Likewise,	if  only  translu-
       cent_remote is specified, searches will only be run on the remote database. In any case, both the local and remote entries corresponding to
       a search result will be merged before being returned to the client.

       translucent_bind_local
	      Enable looking for locally stored credentials for simple bind when binding to the remote database fails.	Disabled by default.

       translucent_pwmod_local
	      Enable RFC 3062 Password Modification extended operation on locally stored credentials.  The operation only applies to entries  that
	      exist in the remote database.  Disabled by default.

ACCESS CONTROL

       Access control is delegated to either the remote DSA(s) or to the local database backend for auth and write operations.	It is delegated to
       the remote DSA(s) and to the frontend for read operations.  Local access rules involving data returned  by  the	remote	DSA(s)	should	be
       designed  with  care.  In fact, entries are returned by the remote DSA(s) only based on the remote fraction of the data, based on the iden-
       tity the operation is performed as.  As a consequence, local rules might only be allowed to see a portion of the remote data.

CAVEATS

       The Translucent Proxy overlay will disable schema checking in the local database, so that an entry consisting of  overlay  attributes  need
       not adhere to the complete schema.

       Because	the  translucent  overlay  does  not  perform any DN rewrites,	the local and remote database instances must have the same suffix.
       Other configurations will probably fail with No Such Object and other errors.

FILES

       /etc/ldap/slapd.conf
	      default slapd configuration file

SEE ALSO

       slapd.conf(5), slapd-config(5), slapd-ldap(5).

OpenLDAP							    2012/04/23						      SLAPO-TRANSLUCENT(5)
All times are GMT -4. The time now is 03:50 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy