PowerProtect Data Manager 19.10 Oracle RMAN User Guide
Database authentication requirements
Before the ddbmcon program can use database authentication to connect to an Oracle database, you must complete the required configuration to enable the database authentication method. Database authentication can be used to connect to a target database or catalog database.
To enable the database authentication method, run the ddutil command with the appropriate options to store the database administrator credentials in the lockbox:
ddutil -C -a USER_TYPE=DATABASE_ADMIN [-a DATABASE_SIDS=<database_SIDs>] [-a USERNAME=<administator_username>]
NOTE If the lockbox does not exist when you run the
ddutil command, the command creates the lockbox in the
$RMAN_AGENT_HOME/config directory.
The options -C and -a USER_TYPE=DATABASE_ADMIN are mandatory. If you do not specify the other -a options, -a DATABASE_SIDS=<database_SIDs> and -a USERNAME=<administator_username>, the command prompts for the database SIDs and administrator username. The command always prompts for the administrator password.
If multiple databases exist on the system and all use the same administrator username and password, you can add the credentials for all the databases to the lockbox with the same ddutil command. You must specify the database SIDs as a comma-separated list. For example:
ddutil -C -a USER_TYPE=DATABASE_ADMIN
'RMAN_AGENT_HOME' is retrieved from ddutil runtime location as '/home/oracle/opt/dpsapps/rmanagent' Database SIDs (to a maximum of 19 SIDs): orcl1,orcl2,orcl3,orcl4,orcl5,db1,db2 Database administrator name: SYS Password: xxxxx Re-enter password: xxxxx Successfully set the Oracle database administrator credentials in the lockbox. Enabling the Oracle RMAN application agent.
The following example command includes all the supported -a options:
ddutil -C -a USER_TYPE=DATABASE_ADMIN -a DATABASE_SIDS=orcl1,orcl2,orcl3,orcl4,orcl5,db1,db2 -a USERNAME=SYS
'RMAN_AGENT_HOME' is retrieved from ddutil runtime location as '/home/oracle/opt/dpsapps/rmanagent' Password: xxxxx Re-enter password: xxxxx Successfully set the Oracle database administrator credentials in the lockbox.
To enable the database authentication method, you must also set the following parameters for each required SID in the rman_agent.cfg configuration file:
- Set ORACLE_SERVICE and ORACLE_USER. ORACLE_USER must match the username that is saved in the lockbox.
- If the Oracle Net configuration files reside in a non-default directory, set TNS_ADMIN to the directory pathname.
- If an RMAN catalog is used, set RMAN_CATALOG_SERVICE and RMAN_CATALOG_USER.
For example, the rman_agent.cfg configuration file includes the following settings to enable the database authentication for the database SID orcl:
[SID_orcl] ORACLE_SERVICE = DBFS ORACLE_USER = ORACLE1 TNS_ADMIN = /home/oracle/wallet
To confirm that database authentication is enabled, you can log in as the root user and run the ddutil commands as described in Verify the connectivity from ddbmcon.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\