Hi All:
Unix admin setup power broker to run root.sh as Oracle for agent install. I have tested it manually on the server as oracle user and it works fine. But it did not work when I supply info to the OEM interface during “ADD target manually” process. We do not have local oracle accounts and we do not know passwords. We login to the db servers using our own username and password then we run pbrun on the server to become oracle. We deploy agents using SSH Key.
In this case SSH key has been added to the host and I can ssh from the OEM server to the new host without password prompt.
In the "privilege delegation setting" window I typed the following: /usr/local/bin/pbrun -u root %COMMAND%.
Here is power broker credentials that I'm using:
Credential Name
POWER_BROKER_CRED
Credential Owner
SYSMAN
Authenticating
Target Type Host
Credential Type
Host Credentials
Credential Scope
Global
UserName oracle
Password ******
Privilege Type
POWERBROKER
Run As root
Profile
References None
Credential
Description
Last Modified
Date Aug 26, 2014 5:04:41 PM EDT
Last Modified By
SYSMAN
Credential
Created Date Aug 26, 2014 5:04:41 PM EDT
When i created credential I used oracle user with "oracle" password just to fill blacks.
Agent install completed successfully, but error for root.sh script execution:
The user "oracle" does not have the privileges to run commands as user "root" using the Privilege Delegation tool "/usr/local/bin/pbrun" . •Ensure user "oracle" has privileges to run commands as user root" using the Privilege Delegation tool "/usr/local/bin/pbrun".
•If the Privilege Delegation tool "/usr/local/bin/pbrun" requires a terminal for execution over ssh then set the 'oracle.sysman.prov.agentpush.enablePty" property to true in the
/app/middleware/oms/sysman/prov/agentpush/agentpush.properties" file, which is present on the OMS host.
•You can also ignore this warning and continue in which case the root.sh, any preinstallation or postinstallation scripts specified with run as root enabled will not be run and you have to run them manually after installation.
What I’m doing wrong here?
I have tried change 'oracle.sysman.prov.agentpush.enablePty" property to true but no luck
Thanks.