Internal Users (UNIX, Linux)

Use this page to add and modify internally authenticated users and users who do not have accounts on the host operating system.

Add users that the database server authenticates by checking their credentials with a hashed password that is stored by the database server. Grant database access to users by mapping each user to the appropriate user and group privileges, regardless of whether these users have operating system accounts on the database server host computer. The users can be mapped to either an operating system user name or an operating system user ID and one or more group IDs.

Specify the level of privileges for internal users (USERMAPPING)
Specify whether the database server accepts connections from internal users by setting the USERMAPPING configuration parameter.
No privileges
User mapping is turned off. Internal users cannot connect to the database server.
Basic
Internal users can have basic privileges on the database server. But an internal user cannot perform administrative operations, even if the user is mapped to a server administrator user or group ID.
Administrator
Internal users can have administrator privileges on the database server.
Authentication Type
The method by which the internal user is authenticated.
Database
The user is internally authenticated by the database server.
OS
The user is authenticated by the operating system.
PAM
The user is authenticated through a Pluggable Authentication Module (PAM). If both PAM and non-PAM ports are available, PAM is displayed with the other authentication method.
Account Status
The status of the internally authenticated accounts. Access to the database server is enabled for unlocked users and disabled for locked users.
Surrogate OS User
The user name of an existing operating system user on the database server host computer to which the internal user is mapped.
UID
The user ID of an existing operating system user to which the internal user is mapped.
GID
One or more group IDs of existing database user groups to which the internal user is mapped.
Home Directory
The directory in which the user files for the internal user are stored.
Privilege
The privileges that apply to the internal user.
DBSA
Database server administrator.
DBSSO
Database system security officer.
AAO
Audit analysis officer.
Bargroup
On UNIX, members of the bargroup group can execute ON–Bar commands.
Related information:
Internal users (UNIX, Linux)
Connection security
Administrative roles and role separation
Mapped user surrogates in the allowed.surrogates file (UNIX, Linux)
USERMAPPING configuration parameter (UNIX, Linux)
Copyright© 2018 HCL Technologies Limited