How to add a password for Oracle listener in Veritas Cluster Server
Article ID: 100017247
Updated On:
Resolution
How to configure a password for the listener
VCS provides a utility to encrypt database user passwords and listener passwords.
Encrypt the Pword attribute in the Oracle agent and the LsnrPwd attribute in the Netlsnr agent before configuring these attributes.
Oracle provides the option of storing the listener password in the listener.ora file, in both clear text and encrypted formats. Irrespective of the format in which the password is Stored in Oracle, you must encrypt the password using the vcsencrypt utility before configuring the LsnrPwd attribute. This password, when decrypted should be of the same format as stored in the listener.ora file.
Encrypt the Pword attribute in the Oracle agent and the LsnrPwd attribute in the Netlsnr agent before configuring these attributes.
Oracle provides the option of storing the listener password in the listener.ora file, in both clear text and encrypted formats. Irrespective of the format in which the password is Stored in Oracle, you must encrypt the password using the vcsencrypt utility before configuring the LsnrPwd attribute. This password, when decrypted should be of the same format as stored in the listener.ora file.
Note You need not encrypt passwords when using the configuration wizard or the VCS
Cluster Manager (Java Console) to configure attributes.
Cluster Manager (Java Console) to configure attributes.
You will have to:
1. Get your DBA to set a password on the listener using lsnrctl
2. Once you have the password, run ‘vcsencrypt –agent’ and enter the password.
3. Once entered, vcsencrypt will display the encrypted version.
4. Modify your Netlsnr resource to include the listener password
An example of me doing this here:
1. I log in as Oracle and set a password on the listener in this example it is not an encrypted Oracle one, it is a clear text password if your DBA wants an encrypted password in the listener.ora file he would do a LSNRCTL> set current_listener listener ENCRYPTED :
LSNRCTL> set current_listener listener
Current Listener is listener
LSNRCTL> change_password
Old password:
New password:
Reenter new password:
Connecting to (ADDRESS=(PROTOCOL=tcp)(PORT=1521))
Password changed for listener
The command was completed successfully.
LSNRCTL> set password
Password:
The command was completed successfully.
LSNRCTL> save_config
Connecting to (ADDRESS=(PROTOCOL=tcp)(PORT=1521))
Saved LISTENER configuration parameters.
Listener Parameter File /opt/oracle/network/admin/listener.ora
Old Parameter File /opt/oracle/network/admin/listener.bak
The command was completed successfully.
LSNRCTL>
The password entered was ‘foobar’
2. I then use vcsencrypt to encrypt the password:
root@bishbosh# /opt/VRTSvcs/bin/vcsencrypt -agent
Enter New Password:
Enter Again:
amgMpmPmcMboCroot@bishbosh#
Note that vcsencrypt, for some reason, does print a carriage return after the encrypted password, so in this case the encrypted password is amgMpmPmcMboC
3. Finally, update the listeners configuration to include the encrypted password:
haconf -makerw
hares –modify oralistener LsnrPwd amgMpmPmcMboC
haconf –dump -makero
Issue/Introduction
How to add a password for Oracle Listener in Veritas Cluster Server
Was this article helpful?
Yes
No
Powered by
