miyahira
asked on
DBA goes to vacation
I will be out of office for two weeks for vacation. As DBA, what things should I left to my substitute:
- Documentation that includes as much as possible:
Servers with Oracle - O/S users and password
schemas and instances
scripts to be executed
backups
plans of disaster recovery
exports or imports of dmp
Should I inform System and Sys passwords?
I think this point is sensible. I read once that only the DBA (and the boss) should know the System or Sys password.
Even if I left a Oracle user with DBA grants to my substitute, he/she could change System and Sys passwords.
What is used to do in this kind of cases?
- Documentation that includes as much as possible:
Servers with Oracle - O/S users and password
schemas and instances
scripts to be executed
backups
plans of disaster recovery
exports or imports of dmp
Should I inform System and Sys passwords?
I think this point is sensible. I read once that only the DBA (and the boss) should know the System or Sys password.
Even if I left a Oracle user with DBA grants to my substitute, he/she could change System and Sys passwords.
What is used to do in this kind of cases?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
They will also need to know how to contact Support and open an SR.
ASKER
If it is needed to create users and schemas, or grant privileges to another Oracle users... then substitue would need to use a DBA user...
If you don't have scripts that will create users and grant privs then they need the privs to do it.
What is the question then?
What is the question then?
ASKER
Probably I'm wrong, but I understand in this way:
In the script I can have this commands:
***** Start *****
create tablespace HDV
datafile 'D:\oradata\prod\OPEXT\DAT AFILES_DAT A\HDV.ORA' size 1g
autoextend on NEXT 100M maxsize UNLIMITED;
create tablespace HDV_BLOB
datafile 'D:\oradata\prod\OPEXT\DAT AFILES_DAT A\HDV_BLOB .ORA' size 3G
autoextend on NEXT 100M maxsize UNLIMITED;
create tablespace HDV_IDX
datafile 'D:\oradata\prod\OPEXT\DAT AFILES_IDX \HDV_IDX.O RA' size 500M
autoextend on NEXT 100M maxsize UNLIMITED;
CREATE TEMPORARY TABLESPACE hdvtmp
TEMPFILE 'D:\oradata\prod\OPEXT\tem pfiles\hdv tmp.ora' SIZE 100M
autoextend on NEXT 10M maxsize UNLIMITED;
CREATE USER HDVERM2010
IDENTIFIED BY xxxxxx
DEFAULT TABLESPACE hdv
TEMPORARY TABLESPACE hdvtmp
PROFILE DEFAULT
ACCOUNT UNLOCK;
GRANT resource TO HDVERM2010;
GRANT CREATE SESSION TO HDVERM2010;
GRANT CONNECT TO HDVERM2010;
ALTER USER HDVERM2010 DEFAULT ROLE ALL;
GRANT UNLIMITED TABLESPACE TO HDVERM2010;
***** Finish *****
I need to connect to Oracle as a DBA user to be able to run the script.
In the script I can have this commands:
***** Start *****
create tablespace HDV
datafile 'D:\oradata\prod\OPEXT\DAT
autoextend on NEXT 100M maxsize UNLIMITED;
create tablespace HDV_BLOB
datafile 'D:\oradata\prod\OPEXT\DAT
autoextend on NEXT 100M maxsize UNLIMITED;
create tablespace HDV_IDX
datafile 'D:\oradata\prod\OPEXT\DAT
autoextend on NEXT 100M maxsize UNLIMITED;
CREATE TEMPORARY TABLESPACE hdvtmp
TEMPFILE 'D:\oradata\prod\OPEXT\tem
autoextend on NEXT 10M maxsize UNLIMITED;
CREATE USER HDVERM2010
IDENTIFIED BY xxxxxx
DEFAULT TABLESPACE hdv
TEMPORARY TABLESPACE hdvtmp
PROFILE DEFAULT
ACCOUNT UNLOCK;
GRANT resource TO HDVERM2010;
GRANT CREATE SESSION TO HDVERM2010;
GRANT CONNECT TO HDVERM2010;
ALTER USER HDVERM2010 DEFAULT ROLE ALL;
GRANT UNLIMITED TABLESPACE TO HDVERM2010;
***** Finish *****
I need to connect to Oracle as a DBA user to be able to run the script.
You create tablespaces and temp tablespaces on a daily basis and for each user?
I'm not sure create tablespace can be granted,
the online docs can confirm.
Most of the others can be granted to some user.
Either connect as DBA or grant the necessary privs to issue the commands.
Also, you do realize that connect and create session are the same.
I'm not sure create tablespace can be granted,
the online docs can confirm.
Most of the others can be granted to some user.
Either connect as DBA or grant the necessary privs to issue the commands.
Also, you do realize that connect and create session are the same.
Try to provide remote assistance while on vacations. If you can provide remote assistance then password need not revealed to him/her.
For remote assistance you can use
1. LogMeIn
2. TeamViewer.
For remote assistance you can use
1. LogMeIn
2. TeamViewer.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.