• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer navigation

The Geek Diary

  • OS
    • Linux
    • CentOS/RHEL
    • Solaris
    • Oracle Linux
    • VCS
  • Interview Questions
  • Database
    • oracle
    • oracle 12c
    • ASM
    • mysql
    • MariaDB
  • DevOps
    • Docker
    • Shell Scripting
  • Big Data
    • Hadoop
    • Cloudera
    • Hortonworks HDP

Oracle Database 12c New Feature: SYSRAC administrative privilege

by admin

Separation of Duty for Administering Oracle Real Application Clusters.

Starting with Oracle Database 12c Release 2, Oracle Database provides support for separation of duty best practices when administering Oracle RAC by introducing the SYSRAC administrative privilege for the clusterware agent. This feature removes the need to use the powerful SYSDBA administrative privilege for Oracle RAC.

SYSRAC, like SYSDG, SYSBACKUP and SYSKM, helps enforce separation of duties and reduce reliance on the use of SYSDBA on production systems. This administrative privilege is the default mode for connecting to the database by the clusterware agent on behalf of the Oracle RAC utilities, such as SRVCTL.

The SYSRAC administrative privilege is the default mode of connecting to the database by the Oracle Clusterware agent on behalf of Oracle RAC utilities, such as SRVCTL, meaning that no SYSDBA connections to the database are necessary for the everyday administration of Oracle RAC database clusters.

Note: The SYSRAC privilege only allows OS authentication by the Oracle agent of Oracle Clusterware. Password files and strong authentication cannot be used with the SYSRAC privilege.

Summary:

– Separation of duty best practices when administering Oracle RAC is supported by the SYSRAC administrative privilege.
– This feature eliminates the need to use the powerful SYSDBA administrative privilege for Oracle RAC.
– SYSRAC is the default mode for connecting to the database by the clusterware agent on behalf of RAC utilities, like SRVCTL.
– No SYSDBA connections to the database are necessary for the everyday administration of Oracle RAC database clusters.
– Connecting as SYSRAC:

SQL> CONNECT / AS SYSRAC
SQL> CONNECT /@db1 as SYSRAC
SQL> CONNECT /@db2 as SYSRAC

Filed Under: oracle, oracle 12c, RAC

Some more articles you might also be interested in …

  1. Script to verify the Oracle DataPump Data Dictionary Catalog
  2. How to switch roles in Oracle Data Guard
  3. Adding Users to Oracle Passwordfile (Oracle Passwordfile Authentication)
  4. Oracle RAC : understanding split brain
  5. ORA-00257:Archiver Error, Connect Internal Only Until Freed
  6. IN and EXISTS SQL Operator
  7. Oracle RAC Interview Questions – Coherence and Split-Brain
  8. ORA-16713: The Oracle Data Guard broker command timed out When Changing LogXptMode
  9. Oracle 12C Enhancements for Cascaded Standby Databases
  10. Understanding Flashback Table Feature in Oracle Database

You May Also Like

Primary Sidebar

Recent Posts

  • vgextend Command Examples in Linux
  • setpci command – configure PCI device
  • db_load command – generate db database
  • bsdtar command – Read and write tape archive files

© 2022 · The Geek Diary

  • Archives
  • Contact Us
  • Copyright