Enabling iSQL*Plus DBA Access
To access the iSQL*Plus DBA URL, you must set up the OC4J user manager. You can set up OC4J to use:The XML-based provider type, jazn-data.xmlThe LDAP-based provider type, Oracle Internet DirectoryThis document discusses how to set up the iSQL*Plus DBA URL to use the XML-based provider. For information on how to set up the LDAP-based provider, see the Oracle9iAS Containers for J2EE documentation.
To set up the iSQL*Plus DBA URLCreate users for the iSQL*Plus DBA URL.Grant the webDba role to users.Test iSQL*Plus DBA Access.The Oracle JAAS Provider, otherwise known as JAZN (Java AuthoriZatioN), is Oracle's implementation of the Java Authentication and Authorization Service (JAAS). Oracle's JAAS Provider is referred to as JAZN in the remainder of this document. See the Oracle9iAS Containers for J2EE documentation for more information about JAZN, the Oracle JAAS Provider.
Create and Manage Users for the iSQL*Plus DBA URLThe actions available to manage users for the iSQL*Plus DBA URL are:Create usersList usersGrant the webDba roleRemove usersRevoke the webDba roleChange user passwordsYou perform these actions from the $ORACLE_HOME/oc4j/j2ee/isqlplus/application-deployments/isqlplus directory.$JAVA_HOME is the location of your JDK (1.4 or above). It should be set to $ORACLE_HOME/jdk, but you may use another JDK.admin_password is the password for the iSQL*Plus DBA realm administrator user, admin. The password for the admin user is set to 'welcome' by default. You should change this password as soon as possible. See Change User Passwords.A JAZN shell option, and a command line option are given for all steps.To start the JAZN shell, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -shell
To exit the JAZN shell, enter:EXIT
Create Users
You can create multiple users who have access to the iSQL*Plus DBA URL. To create a user from the JAZN shell, enter:JAZN> adduser "iSQL*Plus DBA" username password
To create a user from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -adduser "iSQL*Plus DBA" username password
username and password are the username and password used to log into the iSQL*Plus DBA URL.To create multiple users, repeat the above command for each user.List Users
You can confirm that users have been created and added to the iSQL*Plus DBA realm. To confirm the creation of a user using the JAZN shell, enter:JAZN> listusers "iSQL*Plus DBA"
To confirm the creation of a user using the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -listusers "iSQL*Plus DBA"
The usernames you created are displayed.Grant Users the webDba Role
Each user you created above must be granted access to the webDba role. To grant a user access to the webDba role from the JAZN shell, enter:JAZN> grantrole webDba "iSQL*Plus DBA" username
To grant a user access to the webDba role from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -grantrole webDba "iSQL*Plus DBA" username
Remove Users
To remove a user using the JAZN shell, enter:JAZN> remuser "iSQL*Plus DBA" username
To remove a user using the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -remuser "iSQL*Plus DBA" username
Revoke the webDba Role
To revoke a user's webDba role from the JAZN shell, enter:JAZN> revokerole webDba "iSQL*Plus DBA" username
To revoke a user's webDba role from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -revokerole "iSQL*Plus DBA" username
Change User Passwords
To change a user's password from the JAZN shell, enter:JAZN> setpasswd "iSQL*Plus DBA" username old_password new_password
To change a user's password from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -setpasswd "iSQL*Plus DBA" username old_password new_password
Test iSQL*Plus DBA Access
Test iSQL*Plus DBA access by entering the iSQL*Plus DBA URL in your web browser:http://machine_name.domain:5560/isqlplus/dba
A dialog is displayed requesting authentication for the iSQL*Plus DBA URL. Log in as the user you created above. You may need to restart iSQL*Plus for the changes to take effect.
To access the iSQL*Plus DBA URL, you must set up the OC4J user manager. You can set up OC4J to use:The XML-based provider type, jazn-data.xmlThe LDAP-based provider type, Oracle Internet DirectoryThis document discusses how to set up the iSQL*Plus DBA URL to use the XML-based provider. For information on how to set up the LDAP-based provider, see the Oracle9iAS Containers for J2EE documentation.
To set up the iSQL*Plus DBA URLCreate users for the iSQL*Plus DBA URL.Grant the webDba role to users.Test iSQL*Plus DBA Access.The Oracle JAAS Provider, otherwise known as JAZN (Java AuthoriZatioN), is Oracle's implementation of the Java Authentication and Authorization Service (JAAS). Oracle's JAAS Provider is referred to as JAZN in the remainder of this document. See the Oracle9iAS Containers for J2EE documentation for more information about JAZN, the Oracle JAAS Provider.
Create and Manage Users for the iSQL*Plus DBA URLThe actions available to manage users for the iSQL*Plus DBA URL are:Create usersList usersGrant the webDba roleRemove usersRevoke the webDba roleChange user passwordsYou perform these actions from the $ORACLE_HOME/oc4j/j2ee/isqlplus/application-deployments/isqlplus directory.$JAVA_HOME is the location of your JDK (1.4 or above). It should be set to $ORACLE_HOME/jdk, but you may use another JDK.admin_password is the password for the iSQL*Plus DBA realm administrator user, admin. The password for the admin user is set to 'welcome' by default. You should change this password as soon as possible. See Change User Passwords.A JAZN shell option, and a command line option are given for all steps.To start the JAZN shell, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -shell
To exit the JAZN shell, enter:EXIT
Create Users
You can create multiple users who have access to the iSQL*Plus DBA URL. To create a user from the JAZN shell, enter:JAZN> adduser "iSQL*Plus DBA" username password
To create a user from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -adduser "iSQL*Plus DBA" username password
username and password are the username and password used to log into the iSQL*Plus DBA URL.To create multiple users, repeat the above command for each user.List Users
You can confirm that users have been created and added to the iSQL*Plus DBA realm. To confirm the creation of a user using the JAZN shell, enter:JAZN> listusers "iSQL*Plus DBA"
To confirm the creation of a user using the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -listusers "iSQL*Plus DBA"
The usernames you created are displayed.Grant Users the webDba Role
Each user you created above must be granted access to the webDba role. To grant a user access to the webDba role from the JAZN shell, enter:JAZN> grantrole webDba "iSQL*Plus DBA" username
To grant a user access to the webDba role from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -grantrole webDba "iSQL*Plus DBA" username
Remove Users
To remove a user using the JAZN shell, enter:JAZN> remuser "iSQL*Plus DBA" username
To remove a user using the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -remuser "iSQL*Plus DBA" username
Revoke the webDba Role
To revoke a user's webDba role from the JAZN shell, enter:JAZN> revokerole webDba "iSQL*Plus DBA" username
To revoke a user's webDba role from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -revokerole "iSQL*Plus DBA" username
Change User Passwords
To change a user's password from the JAZN shell, enter:JAZN> setpasswd "iSQL*Plus DBA" username old_password new_password
To change a user's password from the command-line, enter:$JAVA_HOME/bin/java -Djava.security.properties=$ORACLE_HOME/sqlplus/admin/iplus/provider -jar $ORACLE_HOME/oc4j/j2ee/home/jazn.jar -user "iSQL*Plus DBA/admin" -password admin_password -setpasswd "iSQL*Plus DBA" username old_password new_password
Test iSQL*Plus DBA Access
Test iSQL*Plus DBA access by entering the iSQL*Plus DBA URL in your web browser:http://machine_name.domain:5560/isqlplus/dba
A dialog is displayed requesting authentication for the iSQL*Plus DBA URL. Log in as the user you created above. You may need to restart iSQL*Plus for the changes to take effect.
http://www.stanford.edu/dept/itss/docs/oracle/10g/server.101/b12170/ch4.htm#sthref663
http://www.stanford.edu/dept/itss/docs/oracle/10g/server.101/b12170/ch3.htm#BCEIHEJF