Skip to content
February 5, 2013 / doganay

ORA-01031: insufficient privileges while sqlplus / as sysdba by LDAP USER


Problem:

You login with an ldap user and try sqlplus / as sysdba :

ORA-01031: insufficient privileges

But you have membership of both dba and oinstall:

# id doganaym
uid=10031(doganaym) gid=2003(VeriTabaniServerAdmins) groups=2003(VeriTabaniServerAdmins),1031(dba_1031),1000(dba_1000),506(dba_506),503(dba_503),502(dba_502),501(dba),500(oinstall),201(dba_201),102(dba_102)

# /usr/bin/getent passwd doganaym
doganaym:VAS:10031:2003:Mustafa Doganay:/home/users/doganaym:/bin/bash


Reason:

The root cause of the problem is that, sqlplus checks   /etc/group   in a hard-coded way.


Solution:

Add LDAP user at the end of dba and oinstall lines into /etc/group  file:

oinstall:x:500:root,oracle,doganaym
dba:x:501:root,oracle,doganaym
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: