1.今天在用RMAN新搭建数据库的过程中,遇到如下错误
2.报权限错误,我紧接着去做了dd 看下是否有权限读写,结果报如下错误
3.接着我查询了磁盘组属正常
4.查询了ORACLE_HOME/bin/oracle可执行文件权限和组属
发现oracle可执行文件用户组不对,应该属于asmadmin
5.因此我做了如下处理
su - grid
cd $GRID_HOME/bin
./setasmgidwrap o=<11.2 RDBMS>/bin/oracle
经过如上处理后,一切正常。后面我查看了moS 可以参考如下文档解决
1084186.1和1487475.1
| CASE | GRID(oracle binary) | RDBMS(oracle binary) | ASM Devices permission | Impact |
| 1. Wrong ASM device group permission | -rwsr-s--x 1 grid oinstall | -rwsr-s--x 1 oracle asmadmin | brw-rw---- 1 grid dba ( or asmdba ) | Database connections using oracle user does not have any issue as oracle user usually belong to dba as a secondary group who has read/write permission on ASM devices. But any user who does not belong to dba group will cause the error described in the symptom. |
| 2. Wrong oracle group permission from RDBMS | -rwsr-s--x 1 grid oinstall | -rwsr-s--x 1 oracle oinstall | brw-rw---- 1 grid asmadmin | Database will not start up as even oracle user does not have enough priviledge to read/write from/to ASM devices |
| 3. Wrong oracle binary group permission from RDBMS and wrong ASM device group permission | -rwsr-s--x 1 grid oinstall | -rwsr-s--x 1 oracle oinstall | brw-rw---- 1 grid oinstall | Any user who doesn't belong to oinstall group will cause the error described in the symptom above. And this is not a real role separation between ASM ( SA - Storage team ) and RDBMS ( DBA team ) as all users belonged to oinstall group can destroy ASM devices using OS command such as "dd" etc. |
| 4. No setuid bit for oracle binary from RDBMS Home | -rwsr-s--x 1 grid oinstall | -rwxr-x--x 1 oracle asmadmin | brw-rw---- 1 grid asmadmin | Any user other than oracle will cause the error described in the symptom above |
| 5. No setuid bit for oracle binary from GRID Home | -rwxr-x--x 1 grid oinstall | rwsr-s--x 1 oracle asmadmin | brw-rw---- 1 grid asmadmin | Database will not start up with ORA-00205 and ORA-27123 error from RDBMS side. See Oracle Note 1487382.1 |
| 6. Correct Permission for role separation | -rwsr-s--x 1 grid oinstall | -rwsr-s--x 1 oracle asmadmin | brw-rw---- 1 grid asmadmin | No issue. |
1. Implement the correct permission for oracle binary from GRID and RDBMS Home and ASM devices.
|
| GRID(oracle binary) | RDBMS(oracle binary) | ASM Devices permission |
| Correct Permission for role separation | -rwsr-s--x 1 grid oinstall | -rwsr-s--x 1 oracle asmadmin | brw-rw---- 1 grid asmadmin |
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/31134212/viewspace-2119242/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/31134212/viewspace-2119242/
873
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
