Sun Microsystems, Inc.  Oracle System Handbook - ISO 7.0 May 2018 Internal/Partner Edition
   Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback

Asset ID: 1-71-2163751.1
Update Date:2018-02-15
Keywords:
Solution Type  Technical Instruction Sure

Solution  2163751.1 :   OEDA Deployment - Generating new or non-default hash password for root and non-root users  

Related Items 
    

  • Exadata Database Machine X2-8
    •  
Related Categories 
    

  • PLA-Support>Eng Systems>Exadata/ODA/SSC>Oracle Exadata>DB: Exadata_EST
    •  




OEDA Deployment - Generating new or non-default hash password for root and non-root users.

Applies to:

Exadata Database Machine X2-8 - Version All Versions to All Versions [Release All Releases]
Information in this document applies to any platform.

Goal

 Provide steps on how to update OEDA configuration with non-default passwords.

Solution

 Starting with July 2016 OEDA Release, a new default password - "We1come$" will be set and used by OEDA while creating grid and/or oracle user accounts. This will have an impact on all Clusterware and Database user accounts - both OS users and SQL*Plus users, such as SYS and SYSTEM. This change is for all GI and DB versions. There are no changes to root password at this moment and will remain the current default.

This is being done to comply with password complexity requirement for database users and also to allow different passwords for root and non-root users.
This will also allow deployments where the root password is already set to a non-default password on all the servers in the configuration.

1) How to change the current default passwords so that OEDA can use them?

If you prefer to set a different password for non-root users:

$/u01/onecommand/linux-x86/genPasswordHash.sh -non-root
Enter password to be used for all non-root users:******
Re-enter non-root password:*****
$

(This script/utility will be under the Operating System specific directory, which will be created when OEDA software is unzipped.  In the above example, we are using Linux-x64.).

This will update the OEDA configuration file with the new encrypted password. This new password will be used while creating grid and/or oracle users and also for SYS and SYSTEM database user accounts.
You need to use this option to change or set the password before the "Create Users" step.

2) What if I have a non-default root password already set on all the database and storage servers?

If you have a non-default password already set on all the database and storage servers, you can update the OEDA configuration file with the non-default password using the following:

$/u01/onecommand/linux-x86/genPasswordHash.sh -root
Enter root password::******
Re-enter root password:*****
$

This will update the OEDA configuration file with the new encrypted password for root user. This new password will be used by OEDA to login to each of the database/storage server as needed. Please note that this assumes that same password is used across all servers involved in the configuration.

Additional details:

$/u01/onecommand/linux-x86/genPasswordHash.sh -help

The genPasswordHash.sh utility enables you to update the OEDA configuration file with the encrypted passwords of the root and non-root users (grid and oracle users).

These passwords will be used during deployment.

There are two use cases for using the genPasswordHash.sh
utility:

1. If your Exadata nodes are configured with a custom password for the root user, then you need to run this utility to update the OEDA configuration file with the custom root password.
This enables install.sh to log into the Exadata nodes using the correct password.

2. If you want to set up a custom password for the oracle and grid users, then you need to run this utility to update the OEDA configuration file with the desired password.
The same password will be used for both oracle and grid users.

Make sure you enter valid passwords when prompted. Passwords are encrypted in the OEDA configuration file.

Usage: ./genPasswordHash.sh [-root | -non-root | -all]

Options:
-root Update the OEDA configuration file with the root password.
The same password for root will be used on ALL nodes.
This is the default option.

-non-root Update the OEDA configuration file with the password set for the grid and oracle users.

The same password will be set for both users on all nodes.

-all This option is a combination of the -root and -non-root options.

 

---------------------------------------------------------------------------------------------------------------------------------------------------------------

Diagnostics Collection User on Storage servers:

- Starting with May, 2016 OEDA - a new cell server user - CELLDIAGUSER will be created.  The default password is Welcome12345. The password for this user will be reset to a randomly generated password during "Resecure Machine" step. 

Please login to each of the cells as "celladmin" and change the password using the following command:

cellcli -e ALTER USER CELLDIAG password="<newPassword>"

 

 


Attachments 
This solution has no attachment
  Copyright © 2018 Oracle, Inc.  All rights reserved.
 Feedback