Home » RDBMS Server » Security » OS login
OS login [message #260020] Fri, 17 August 2007 02:54 Go to next message
jesuisantony
Messages: 166
Registered: July 2006
Location: Chennai
Senior Member
A database was created recently. That should be accessed only by 3 members from the project team. And all the 3 members will use the same Oracle user ID to login to the database. But the project team wants to make sure that only those 3 users should be able to login into that database. Is there anyway that I can restrict the OS users and allow the 3 OS users alonne to use the Oracle login ID.




Re: OS login [message #260021 is a reply to message #260020] Fri, 17 August 2007 02:55 Go to previous messageGo to next message
Michel Cadot
Messages: 68625
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
Yes there is a way with database trigger but why not one account per user?
Why do they have to share the same login?

Regards
Michel
Re: OS login [message #260044 is a reply to message #260021] Fri, 17 August 2007 04:34 Go to previous messageGo to next message
jesuisantony
Messages: 166
Registered: July 2006
Location: Chennai
Senior Member
Their application depends on a particular schema. Hence they need to work on the same.
Re: OS login [message #260047 is a reply to message #260044] Fri, 17 August 2007 04:49 Go to previous messageGo to next message
Michel Cadot
Messages: 68625
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
You mean the application has the schema name hard coded in accesses to the database?

Regards
Michel
Re: OS login [message #260145 is a reply to message #260044] Fri, 17 August 2007 10:47 Go to previous message
transfer
Messages: 53
Registered: August 2007
Location: transfer
Member
If you have code that does not reference the schema explicitly, you can use an "after logon" trigger to change the current schema :
create or replace trigger use_appuser_schema 
  after logon on realuser.schema
  begin
    execute immediate 'alter session set current_schema = appuser';
  end;
/
Once "realuser" logs on, if he executes
select * from mytable;
the code will reference appuser.mytable. However,
select * from user_tables;
will still list the tables of which "realuser" is the owner!
Previous Topic: Audit sys operation fail
Next Topic: Find IP Addresses
Goto Forum:
  


Current Time: Thu Mar 28 19:24:15 CDT 2024