000017202 - How to login to Oracle with a Read only User to run custom queries in AM 7.1.

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000017202
Applies ToRSA Authentication Manager (AM) 7.1 SP4
IssueHow to logon to the Oracle with a Read only User to run custom queries in RSA Authentication Manager 7.1.
ResolutionLogin to the SecurID Appliance with SSH and emcsrv account
or SSH to Linux, then sudo su rsaadmin account
or Access the windows Server command CMD prompt
Change directory into ..<AM_Home>/utils
If you have not done so already, Create the Read-only user for the database with the
      ./rsautil manage-database -a create-readonly-user -r jayg -p passw0rd
User = jayg with password = passw0rd ? passwords cannot have most special characters in Oracle - see KB a50742.
Make sure Read Only user created by List RO users sql command
     ./rsautil manage-database -a exec-sql -f diagnostics/list_readonly_users.sql
Find out the 8-character Oracle Database Instance name, aka the Oracle SID
it is in the ../utils/etc/jndi.properties file    e.g. oyrpf14j
or under ../db/admin directory
Connect to SQL and instance with RO User and password - sqlplus <ro_user>/<password>@<oracle-sid>
    . ./rsaenv        [rsaenv.cmd in Windows]
    sqlplus jayg/passw0rd@oyrpf14j
Reference other KB articles for various select statements and queries:
KB a48755 - How to run SQL queries in AM 7.1 with full rights, not just as a Read-only user
KB a56694 - How to list all RO database users
KB a57090 - How to give access to User attribute tables to RO users
Legacy Article IDa67947