hi,
This is called OS authentication.
For a unix environment, just
create user USERNAME identified externally;
then you can "sqlplus /"
It is what I use. I set my:
os_authent_prefix string ops$
to ops$ actually, so that when I
create user ops$yogeeraj identified by password;
I have the OPTION of either
a) using "sqlplus /"
b) "sqlplus ops$yogeeraj/password"
as I choose (eg: when logged in locally, I use /, coming in over the network -- I use the password)
$ sqlplus scott/tiger
well, it is trivial for someone to ps -aef | grep sqlplus and see my credentials. sqlplus / -- they get nothing
In my scripts, run in the background (backups and what not), we use sqlplus /, we don't HAVE any passwords encoded in there.
CAUTION: setting remote_os_authent to true will be serious security loop hole.
regards
Yogeeraj
No person was ever honoured for what he received. Honour has been the reward for what he gave (clavin coolidge)
