ora-15025 Permission denied

最新推荐文章于 2024-06-26 20:54:50 发布

转载最新推荐文章于 2024-06-26 20:54:50 发布 · 285 阅读

本文介绍了在使用RMAN搭建Oracle数据库过程中遇到的权限错误及解决方法。通过调整oracle可执行文件的用户组为asmadmin，并设置正确的权限，最终解决了启动数据库时出现的ORA-00205和ORA-27123错误。

1.今天在用RMAN新搭建数据库的过程中，遇到如下错误

iqJUZp24QAAAAASUVORK5CYII=

2.报权限错误，我紧接着去做了dd 看下是否有权限读写，结果报如下错误

3.接着我查询了磁盘组属正常

8P4y1iA3jFZNUAAAAASUVORK5CYII=

4.查询了ORACLE_HOME/bin/oracle可执行文件权限和组属

发现oracle可执行文件用户组不对，应该属于asmadmin

5.因此我做了如下处理

su - grid

cd $GRID_HOME/bin

./setasmgidwrap o=<11.2 RDBMS>/bin/oracle

经过如上处理后，一切正常。后面我查看了moS 可以参考如下文档解决

1084186.1和1487475.1

CASE	GRID(oracle binary)	RDBMS(oracle binary)	ASM Devices permission	Impact
1. Wrong ASM device group permission	-rwsr-s--x 1 grid oinstall	-rwsr-s--x 1 oracle asmadmin	brw-rw---- 1 grid dba ( or asmdba )	Database connections using oracle user does not have any issue as oracle user usually belong to dba as a secondary group who has read/write permission on ASM devices. But any user who does not belong to dba group will cause the error described in the symptom.
2. Wrong oracle group permission from RDBMS	-rwsr-s--x 1 grid oinstall	-rwsr-s--x 1 oracle oinstall	brw-rw---- 1 grid asmadmin	Database will not start up as even oracle user does not have enough priviledge to read/write from/to ASM devices
3. Wrong oracle binary group permission from RDBMS and wrong ASM device group permission	-rwsr-s--x 1 grid oinstall	-rwsr-s--x 1 oracle oinstall	brw-rw---- 1 grid oinstall	Any user who doesn't belong to oinstall group will cause the error described in the symptom above. And this is not a real role separation between ASM ( SA - Storage team ) and RDBMS ( DBA team ) as all users belonged to oinstall group can destroy ASM devices using OS command such as "dd" etc.
4. No setuid bit for oracle binary from RDBMS Home	-rwsr-s--x 1 grid oinstall	-rwxr-x--x 1 oracle asmadmin	brw-rw---- 1 grid asmadmin	Any user other than oracle will cause the error described in the symptom above
5. No setuid bit for oracle binary from GRID Home	-rwxr-x--x 1 grid oinstall	rwsr-s--x 1 oracle asmadmin	brw-rw---- 1 grid asmadmin	Database will not start up with ORA-00205 and ORA-27123 error from RDBMS side. See Oracle Note 1487382.1
6. Correct Permission for role separation	-rwsr-s--x 1 grid oinstall	-rwsr-s--x 1 oracle asmadmin	brw-rw---- 1 grid asmadmin	No issue.

Solution

1. Implement the correct permission for oracle binary from GRID and RDBMS Home and ASM devices.

	GRID(oracle binary)	RDBMS(oracle binary)	ASM Devices permission
Correct Permission for role separation	-rwsr-s--x 1 grid oinstall	-rwsr-s--x 1 oracle asmadmin	brw-rw---- 1 grid asmadmin