Windows Terminal Server - Oracle Logon Problem

I have a Windows 2003 R2 server setup as an application terminal server.  I am able to connect to a remote Oracle DB as an administrator but not with a user in the "Users" group.  Also, if I establish a connection to the Oracle server as an administrator and then open another terminal server session with a "User" account I can establish a connection to the Oracle server.  If I disconnect the administrator session I loose the user session as well.

I am using Oracle 10g drivers on the server.  I setup a packet capture and do not even see any packets leaving the server when the logon fails.  The Oracle logon error is: Window Title: Connection Error - "Error on Connection to Oracle Database: - 2147467259?"

When the logon fails I get a Windows Security Event ID: 577, Type: Failure Aud, Category: Privilege Use.  In the Description under Privileges it indicates "SeCreateGlobalPrivilege".

It appears Windows/Oracle cannot make a new network connection out of the server as a User.  I do not have the Windows firewall on.  I have an X-Windows Client on this same server that works fine and it opens and closes ports.

Please help.

Thanks in advance!!!
Who is Participating?
mbrian7Connect With a Mentor Author Commented:
I finally found a couple of articles that reference what I am seeing.  Not exactly the same problem but the fix is the same. Thanks to ArildS on this site. and .

Assign the "Create global objects" user right to the non-Administrator account.

1. Click Start, point to Programs, point to Administrative Tools, and then click Local Security Policy.
2. Expand Local Policies, and then click User Rights Assignment.
3. In the right pane, double-click Create global objects.
4. In the Local Security Policy Setting dialog box, click Add.
5. In the Select Users or Group dialog box, click the user account that you want to add, click Add, and then click OK.
6. Click OK.
You are saying that the Windows 2003 server is just an Oracle client, correct? And you are logging into it with term services and then executing an app that connects remotely to an actual Oracle db server.

It is possible that you installed the Oracle client on the box as administrator, and the other user does not have access to the software install. Possibly it is simple a permissions problem on the client box itself. All users must be able to see the Oracle Home directory (read / execute perms).

Possibly because of port redirection there are no possibilyty to keep the ports open.
Possibly port get blocked for some reason.
The complex environment you use the more problems will you have.
mbrian7Author Commented:
I have made sure the C:\Oracle folder has the permissions for the User group.  I even gave my "test" user ID full rights and forced inheritance on the Oracle folder as a test.  Still has the same reults.  Since this is a new setup I am going to roll back to a previous image of the server setup and try to reinstall Oracle.  Thanks.
I'm sorry that I cannot help more. I don't quite understand your configuration, it sounds a bit complex but perhaps it was just my inability to understand the explanation. I have not seen that error before but it seems like an OS config or security issue, not an Oracle issue. Good luck.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.