Re: OS authentication; remote login; domain qualification

You must set OSAUTH_PREFIX_DOMAIN=true in the registry to use externally identified domain accounts.

I can't recall if the default value is true or false, but try setting it explicitly.

Jared

On Sun, 2004-01-18 at 05:49, bhabani s pradhan wrote:
> Hi All,
>
> The client machine is an NT machine and it belongs to a domain "GALAXY"
> Oracle Db server is on Solaris.
>
> client sqlnet.ora has the following setting:
>
>
> NAMES.DIRECTORY_PATH= (TNSNAMES)
> LOG_DIRECTORY_CLIENT=c:\oracle\ora81\network\log
> USE_DEDICATED_SERVER=ON
> SQLNET_AUTHENTICATION_SERVICES=NTS
>
> initialization parameters:
>
> REMOTE_OS_AUTHENT=TRUE
> os_authent_prefix = ""
>
> ---------
>
> with an user name Without the domain remote connection is possible..
>
> ******************
> SQL> create user USER1 identified externally
> 2 default tablespace ts1
> 3 temporary tablespace TEMP;
> User created.
>
> SQL> grant connect to USER1;
> Grant succeeded.
>
> C:\>sqlplus /@sn1
> SQL*Plus: Release 8.1.7.0.0 - Production on Tue Dec 30 15:51:45 2003
> (c) Copyright 2000 Oracle GALAXYoration. All rights reserved.
> Connected to:
> Oracle8i Enterprise Edition Release 8.1.7.4.0 - 64bit Production
> With the Partitioning option
> JServer Release 8.1.7.4.0 - 64bit Production
>
> SQL> show user
> USER is "USER1"
>
> SQL> select username, osuser from v$session;
> USERNAME OSUSER
> ------------------------------ ------------------------------
>
> SYS oracle
> USER1 USER1
> ***********************
>
> But when i try the username with the NT domain it fails to connect remotely:
>
> *************************
> SQL> create user "GALAXY\USER1" identified externally
> 2 default tablespace ts1
> 3 temporary tablespace TEMP;
> User created.
>
> SQL> grant connect to "GALAXY\USER1";
> Grant succeeded.
>
> When I connect try using sqlplus /@sn1 it fails
> C:\>sqlplus /@sn1
> SQL*Plus: Release 8.1.7.0.0 - Production on Tue Dec 30 15:49:56 2003
> (c) Copyright 2000 Oracle GALAXYoration. All rights reserved.
> ERROR:
> ORA-01017: invalid username/password; logon denied
> ****************************
>
> What I think issue here is, the connection is thru tns-listener and the NT domain and the server machine are different.
>
> Is there any solution for this / Is it possible to connect the remote unix DB server with OS authentication from an NT client with domain name ?
>
>
> Thanks and Regareds
> B S Pradhan

-- 
Please see the official ORACLE-L FAQ: http://www.orafaq.net
-- 
Author: Jared Still
  INET: jkstill_at_cybcon.com

Fat City Network Services    -- 858-538-5051 http://www.fatcity.com
San Diego, California        -- Mailing list and web hosting services
---------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from).  You may
also send the HELP command for other information (like subscribing).