Databases Reference
In-Depth Information
the Oracle user password from being captured by an RMAN log file is to run command files using the @ command-
line option. In the following example, the command file backup.rman contains the following lines:
connect target sys/syspassword@trgt
backup database;
Execute the backup.rman command file by using the @ option at the command line:
$ rman @backup.rman
When the command file executes, the connect command will make the connection to the target database using
the database credentials you supplied, but it won't reveal the database password. RMAN replaces the connection
credentials (username and password) with an asterisk, as shown here:
[oracle@virtual1 rman]$ rman @backup.rman
Recovery Manager: Release 12.1.0.0.2 - Beta on Mon Aug 6 11:55:03 2012
Copyright (c) 1982, 2012, Oracle and/or its affiliates. All rights reserved.
RMAN> connect target *
2> backup database;
connected to target database: ORCL (DBID=1316762630)
Starting backup at 06-AUG-12
...
In this case, the command file issued a connect target command. That command included a password. RMAN
displays the command, but with an asterisk in place of the password.
How It Works
An important fact to remember is that you'll be exposing the database credentials when you connect to RMAN from
the operating system command line. For example, a scan of the Unix processes using ps -ef will reveal any RMAN
command lines, including passwords. You can avoid this problem by always using the connect string from the RMAN
prompt to connect to the recovery catalog, the target database, and the auxiliary database.
Not anyone with read permissions on the command file containing the connect string with the password will be
able to read that file and obtain the password. For this reason, you should look to secure that file, limiting read access to
only DBas.
Identifying RMAN Server Sessions
Problem
RMAN performs all its backup and recovery tasks using server sessions. You want to know more about these server
sessions, such as how many server sessions are created and how to identify them.
 
 
Previous Page
Next Page
RMAN Recipes for Oracle Database 12c
Search WWH ::




Custom Search
Home