我遇到一个奇怪的错误,连接到RMAN目标数据库(11.2.0.4),同时登录到另一个Active Directory域帐户。这在从11.2.0.2升级之前有效。有没有人见过这个?
使用登录到服务器PBXX1的域/ account1 (此工作)
C:\Documents>d:\oracle\ora11g\bin\tnsping db1
TNS Ping Utility for 32-bit Windows: Version 11.1.0.7.0 - Production on 01-DEC-2014 13:01:14
Copyright (c) 1997, 2008, Oracle. All rights reserved.
Used parameter files:
D:\oracle\ora11g\network\admin\sqlnet.ora
Used LDAP adapter to resolve the alias
Attempting to contact (DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=pbxx2)(PORT=1524)))(CONNECT_DATA=(SID=db1)))
OK (20 msec)
c:\Documents> d:\oracle\ora11g\bin\rman target oem_account/oem_pw@db1
Recovery Manager: Release 11.1.0.7.0 - Production on Mon Dec 1 12:49:38 2014
Copyright (c) 1982, 2007, Oracle. All rights reserved.
connected to target database: DB1 (DBID=3818415057)
RMAN>
使用登录到服务器PBXX1的域/ account2 (此失败)
C:\Documents>d:\oracle\ora11g\bin\tnsping db1
TNS Ping Utility for 32-bit Windows: Version 11.1.0.7.0 - Production on 01-DEC-2014 13:01:25
Copyright (c) 1997, 2008, Oracle. All rights reserved.
Used parameter files:
D:\oracle\ora11g\network\admin\sqlnet.ora
Used LDAP adapter to resolve the alias
Attempting to contact (DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=pbxx2)(PORT=1524)))(CONNECT_DATA=(SID=db1)))
OK (0 msec)
c:\Documents> d:\oracle\ora11g\bin\rman target oem_account/oem_pw@db1
Recovery Manager: Release 11.1.0.7.0 - Production on Mon Dec 1 12:50:35 2014
Copyright (c) 1982, 2007, Oracle. All rights reserved.
RMAN-00571: ===========================================================
RMAN-00569: =============== ERROR MESSAGE STACK FOLLOWS ===============
RMAN-00571: ===========================================================
RMAN-00554: initialization of internal recovery manager package failed
RMAN-04005: error from target database:
ORA-01017: invalid username/password; logon denied
C:\Documents>
我可以作为域/ account1登录到服务器PBXX1并以用户域/帐户2运行命令提示符并运行相同的RMAN命令,当命令窗口以域/ account2运行时,它仍然会失败。那么我登录到第三个域帐户,它也在那里失败。使用相同数据库帐户OEM_ADMIN的唯一RMAN连接是在作为域帐户account1登录服务器时建立的连接。
在account1配置文件,AD设置或允许OEM_ADMIN登录到RMAN目标DB1而不使用域帐户account2或account3的本地权限中,究竟是什么。
抱歉,帐户和数据库名称已经过编辑以保护无辜者。