Oracle Database - Operating System Group

Card Puncher Data Processing

About

Operating System User and Group permit to allocate privileges.

The documentation talks about logical OS group (OSDBA, OSOPER, OSASM). Their implementation (their creation on the OS level) may be differ in function of:

  • the type of installation (single database or grid/asm)
  • the type OS (Windows or Linux)

The table below gives the “logical OS Group” by:

  • os group for a database installation
  • os group for a Grid/Asm installation

The user who belongs to the OS group will get the privileges associated.

The link between OS Group and Logical OS Group is made during the installation.

Oracle Database 11gr2 Os Group

Job role separation

You can also create custom configuration groups and users based on job role separation. A custom configuration is a configuration with groups and users that divide access privileges granted by membership in separate operating system groups and users. You can create a single user (for example, oracle) to own both Oracle database, and Oracle grid infrastructure installations. Alternatively, you can create a separate user (for example, grid) to own the Oracle grid infrastructure installation.

Group

You can designate a unique group, separate from database administrator groups, or you can use the same group as the OSASM and OSDBA group, to grant system privileges to administer both the ASM instances and Oracle Database instances.

OSDBA

dba

This group identifies operating system user accounts that have database administrative privileges (the SYSDBA privilege).

On Windows: ORA_DBA

asmdba

The OSDBA group for Automatic Storage Management can be the same group used as the OSDBA group for the database (ie Oracle Database - Operating System Group), or you can create a separate OSDBA group for Automatic Storage Management (typically, asmdba) to provide administrative access to Automatic Storage Management instances.

The Oracle grid infrastructure software owner (typically, grid) must be a member of the OSDBA group. Membership in the OSDBA group allows access to the files managed by Automatic Storage Management. If you have a separate OSDBA group for Automatic Storage Management, then the Oracle Restart software owner must be a member of the OSDBA group for each database and the OSDBA group for Automatic Storage Management.

OSOPER

This is an optional group.

oper

Create this group if you want a separate group of operating system users to have a limited set of database administrative privileges (the SYSOPER privilege). This group cannot directly connect as SYSOPER, unless explicitly granted. However, they will have the privileges granted by the SYSOPER privilege. |

On Windows: ORA_OPER

asmoper

Create this group if you want a separate group of operating system users to have a limited set of Oracle instance administrative privileges (the SYSOPER for ASM privilege), including starting up and stopping the Oracle ASM instance. By default, members of the OSASM group also have all privileges granted by the SYSOPER for ASM privilege. If you want to have an OSOPER for ASM group, then the grid infrastructure owner must be a member of this group. |

OSASM

asmadmin

SYSASM privileges for Automatic Storage Management files provide administrator privileges for storage file. In Oracle documentation, the operating system group whose members are granted SYSASM privileges is called the OSASM group, and in command lines, is referred to as asmadmin. Automatic Storage Management can support multiple databases. Members of the OSASM group can use SQL to connect to an Automatic Storage Management instance as SYSASM using operating system authentication. The SYSASM privileges permit mounting and dismounting disk groups, and other storage administration tasks. SYSASM privileges provide no access privileges on an RDBMS instance. If you do not designate a separate group as the OSASM group, then the OSDBA group you define is also by default the OSASM group. |

Documentation / Reference





Discover More
Azure Firewall Public Ip Restriction
Azure - Oracle Database Manually Installation on Linux

The installation of the Oracle database on bare-bone Linux. For a quick an dirty installation, see Creation of a VM with Oracle Linux 7 Update 4 and a Standard_DS1_v2...
Card Puncher Data Processing
Oracle Database - (Software|Installation) Owner (oracle, grid)

The software owner is the user who owned/performed the installation of an oracle database (single or rac). Oracle recommends that you create one software owner to own each Oracle software installation,...
Card Puncher Data Processing
Oracle Database - Automating Shutdown and Startup on Linux

Automating database startup and shutdown guards against incorrect database shutdown. Since the version 11.2, it's recommended to use Oracle Restart but a single database installation doesn't install it....
Card Puncher Data Processing
Oracle Database - How to connect SYS as SYSDBA without password

When you connect as sysdba issuing a 'CONNECT / AS SYSDBA', Oracle checks if your account is a member of the os group 'ORA_sid_DBA' or 'ORA_DBA' group. Operating System Group UNIX User Group Windows...
Oracle Database 11gr2 Os Group
Oracle Database - Operating System Group

Operating System User and Group permit to allocate privileges. The documentation talks logical OS group (OSDBA, OSOPER, OSASM). Their implementation (their creation on the OS level) may be differ in...
Card Puncher Data Processing
Oracle Database - Privileges

A user can connect with different levels of privileges: namely for the database: SYSDBA (the root or administrator of the database) and SYSOPER. SYSOPER allows a user to perform basic operational...
Card Puncher Data Processing
Oracle Database - SYSASM privileges

SYSASM privileges for Automatic Storage Management files provide administrator privileges for storage file. In Oracle documentation, the operating system group whose members are granted SYSASM privileges...
Oracle Database Installationl Location 11gr2 Oel Linux X86 64
Oracle Database 11gR2 - Installation on Linux OEL 5 Update 5 (x86_64)

Installation of Oracle Database 11g Release 2 (11.2) x86_64 on Oracle Enterprise Linux 5 Update 5 on the file system (ie without ASM) or GRID. Linux OEL installation login as root ...



Share this page:
Follow us:
Task Runner