本文介绍了在使用RMAN搭建Oracle数据库过程中遇到的权限错误及解决方法。通过调整oracle可执行文件的用户组为asmadmin,并设置正确的权限,最终解决了启动数据库时出现的ORA-00205和ORA-27123错误。
1.今天在用RMAN新搭建数据库的过程中,遇到如下错误
2.报权限错误,我紧接着去做了dd 看下是否有权限读写,结果报如下错误
3.接着我查询了磁盘组属正常
4.查询了ORACLE_HOME/bin/oracle可执行文件权限和组属
发现oracle可执行文件用户组不对,应该属于asmadmin
5.因此我做了如下处理
su - grid
cd $GRID_HOME/bin
./setasmgidwrap o=<11.2 RDBMS>/bin/oracle
经过如上处理后,一切正常。后面我查看了moS 可以参考如下文档解决
1084186.1和1487475.1
|
CASE |
GRID(oracle binary) |
RDBMS(oracle binary) |
ASM Devices permission |
Impact |
|
1. Wrong ASM device group permission |
-rwsr-s--x 1 grid oinstall |
-rwsr-s--x 1 oracle asmadmin |
brw-rw---- 1 grid dba ( or asmdba ) |
Database connections using oracle user does not have any issue as oracle user usually belong to dba as a secondary group who has read/write permission on ASM devices. But any user who does not belong to dba group will cause the error described in the symptom. |
|
2. Wrong oracle group permission from RDBMS |
-rwsr-s--x 1 grid oinstall |
-rwsr-s--x 1 oracle oinstall |
brw-rw---- 1 grid asmadmin |
Database will not start up as even oracle user does not have enough priviledge to read/write from/to ASM devices |
|
3. Wrong oracle binary group permission from RDBMS and wrong ASM device group permission |
-rwsr-s--x 1 grid oinstall |
-rwsr-s--x 1 oracle oinstall |
brw-rw---- 1 grid oinstall |
Any user who doesn't belong to oinstall group will cause the error described in the symptom above. And this is not a real role separation between ASM ( SA - Storage team ) and RDBMS ( DBA team ) as all users belonged to oinstall group can destroy ASM devices using OS command such as "dd" etc. |
|
4. No setuid bit for oracle binary from RDBMS Home |
-rwsr-s--x 1 grid oinstall |
-rwxr-x--x 1 oracle asmadmin |
brw-rw---- 1 grid asmadmin |
Any user other than oracle will cause the error described in the symptom above |
|
5. No setuid bit for oracle binary from GRID Home |
-rwxr-x--x 1 grid oinstall |
rwsr-s--x 1 oracle asmadmin |
brw-rw---- 1 grid asmadmin |
Database will not start up with ORA-00205 and ORA-27123 error from RDBMS side. See Oracle Note 1487382.1 |
|
6. Correct Permission for role separation |
-rwsr-s--x 1 grid oinstall |
-rwsr-s--x 1 oracle asmadmin |
brw-rw---- 1 grid asmadmin |
No issue. |
1. Implement the correct permission for oracle binary from GRID and RDBMS Home and ASM devices.
|
|
GRID(oracle binary) |
RDBMS(oracle binary) |
ASM Devices permission |
|
Correct Permission for role separation |
-rwsr-s--x 1 grid oinstall |
-rwsr-s--x 1 oracle asmadmin |
brw-rw---- 1 grid asmadmin |
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/31134212/viewspace-2119242/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/31134212/viewspace-2119242/
扫一扫
4099
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
