Day: November 11, 2016

How to Run Security Utility in ORMB Multiple Instances Environment

In ORMB multiple instances environment, run security utility “OraGenSec.exe” by providing non-default information like schema, password, DB connection ,roles,etc.

There are situations  when there are multiple ORMB ( Oracle Revenue Management and Billing ) database instances in one physical database. Normally we run security utility in interactive  mode. It will by default grant permissions to CIS_USER and CIS_READ role.

So for non-default schemas in multiple ORMB database instances environment, we need execute Oragensec by providing command line options, for example ;

d:\..\RMB\Security>OraGenSec.exe -d CISADM_1,PASSWORD,ORMB -u CISUSER_1,CISREAD_1 -r CIS_READ_1
,CIS_USER_1 -a A -l OraGenSec_Security_Log.txt

Generating Security ...

Security privileges and Synonyms generated successfully, Now Exiting ...

d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>dir

05/04/2013 09:31 PM 86 oragensec.bat
05/04/2013 09:31 PM 2,355,284 OraGenSec.exe
11/11/2016 03:30 PM 362,138 security_log.txt

d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>type oragensec.bat
oragensec -d cisadm,cisadm,database-name -r cis_read,cis_user -a A -u cisuser,cisread

CISADM_1 :  Database user that owns the application schema .
PASSWORD:  Password for user CISADM_1.
ORMB: TNS entry in tnsnames.ora.
CISUSER_1:  Database user that has read-write (select, update, insert, and delete) privileges to the objects in the application schema ( CISADM_1). The application will access the database as this user.
CISREAD_1:  Database user with read-only privileges to the objects in the application schema( CISADM_1).
CIS_USER_1:  Database role that has read-write (select, update, insert, and delete) privileges to the objects in the application schema (CISADM_1).
CIS_READ_1:  Database role with read-only privileges to the objects in the application schema (CISADM_1).

capture
Advertisement

Oracle Revenue Management and Billing ( ORMB ) Security Utility OraGenSec

To generate security for ORMB by using “OraGenSec.exe

Here is an example of how to run ORMB 2.5.0.1 security utility — OraGenSec.exe.

1) Make sure database vault must be disabled before running. To check database vault is enabled or not.

SQL>SELECT * 
      FROM V$OPTION 
     WHERE PARAMETER = 'Oracle Database Vault';

PARAMETER              VALUE    CON_ID
---------------------- -------- --------------
Oracle Database Vault  FALSE    0

2) Execute the OraGenSec.exe utility.

d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>set JAVA_HOME=d:\RMB\jdk1.8.0_112
d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>set TNS_ADMIN=D:\oracle


d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>where OraGenSec.exe
d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security\OraGenSec.exe

d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>.\OraGenSec.exe

Enter the application read-only user or Schema Owner in the database: CISADM

Enter the password for the CISADM user:

Enter the name of the Oracle database: ORMB


Enter a comma-separated list of Oracle users in which synonyms need to be created (e.g. cisuser,cisread): CISUSER,CISREAD


Select the following options:

(A/a): Generate security for All objects in the Database?

(O/o): Generate security for specific Objects inputted in this terminal?

(F/f): Generate security for specific objects generated from an input File?
A

You have chosen to generate security for all objects in the database.


Connecting to the Target Database ...
User Name : CISADM
Database Name : ORMB

Generating Security ...

Security privileges and Synonyms generated successfully, Now Exiting ...

Press Enter to Continue ...

d:\RMB\RMB-V2.5.0.1.0-Oracle-Database-MultiPlatform\RMB\Security>