作用
启用一项或多项身份验证服务。如果已安装身份验证,则建议将此参数设置为none或列出的身份验证方法之一。
使用SQLNET.AUTHENTICATION_SERVICES值为all时,服务器尝试使用以下方法进行身份验证。按照以下列出的顺序,靠上的验证不成功,将依次使用下面的其他验证方式。
Authentication based on a service external to the database, such as a service on the network layer, Kerberos, or RADIUS.
Authentication based on the operating system user's membership in an administrative operating system group. Group names are platform-specific. This authentication is applicable to administrative connections only.
Authentication performed by the database.
Authentication based on credentials stored in a directory server.
操作系统身份验证模式下,管理用户连接可以使用任何用户名和密码访问数据库,例如在使用SQL * Plus连接时使用AS SYSDBA子句。连接的示例如下
sqlplus ignored_username/ignored_password AS SYSDBA
如果发出以上命令的操作系统用户已经是相应的管理系统组的成员,连接当然会成功。这是因为由于首先检查组成员身份,服务器将忽略用户名和密码。
以下是参数的可选值,默认是all,比如
SQLNET.AUTHENTICATION_SERVICES=(all)
Authentication methods available with Oracle Net Services:
none
for no authentication methods, including Microsoft Windows native operating system authentication. WhenSQLNET.AUTHENTICATION_SERVICES
is set tonone
, a valid user name and password can be used to access the database.all
for all authentication methods.beq
for native operating system authentication for operating systems other than Microsoft Windowskerberos5
for Kerberos authenticationnts
for Microsoft Windows native operating system authenticationradius
for Remote Authentication Dial-In User Service (RADIUS) authenticationtcps
for SSL authentication
SQLNET.AUTHENTICATION_SERVICES=(NONE)
SQLNET.AUTHENTICATION_SERVICES=(beq)
----------------------------
长按下图二维码关注我,每篇涨点小知识!
