Solution : https://service.sap.com/sap/support/notes/1595481 (SAP Service marketplace login required)
Summary :
This SAP Note outlines management practices for database accounts in environments where Oracle Database Vault is enabled. It highlights the necessity for using DV_ACCTMGR role instead of the DBA role due to enhanced security measures. With detailed command examples, the note demonstrates account operations (create, modify, delete) using SECACCTMROMGR at SQL prompts. It further details the privileges granted to roles like SECACCTMGR and SAPACCTMGR, ensuring successful utilization of tools such as BRCONNECT for managing database accounts. Additionally, it addresses troubleshooting scenarios, emphasizing correct role and privilege assignments to avoid common errors like ORA-01031.
Key words :
owner table_name privilege------------ ------------ --------------ops$<sid>adm sapuser updateops$<sid>adm sapuser selectops$<sid>adm sapuser insertops$<sid>adm sapuser deletesql>changing sap database user password, sql> conn secacctmgr/<pwd>secacctmgr @ qo1 sql> alter user dbsnmp identified, sysdba @ qo1 sql> alter user test identified, granting sap-specific database rolessap-specific database roles, sysdba @ qo1 sql> create user test identified, sysdba @ qo1 sql> solution managing database accounts, 32br0802i brconnect completed successfullyoraqo1 116> managing database users, secacctmgr @ qo1 sql> alter user test identified, secacctmgr @ qo1 sql> create user test identified, sysdba @ qo1 sql> drop user test
Related Notes :
| 1678937 | Administration of Database Vault Enabled Databases |
| 1355140 | Using Oracle Database Vault in an SAP environment |