Oracle Database Discussions

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

ORA-01017: invalid username/password - OS authentication failing

MSandicoAug 14 2014 — edited Aug 14 2014

Hi All,

Oracle 11G 11.2.0.3.0 running on Windows 2008R2 64-bit

I am trying to get Windows authentication to work, locally on the database server but I keep on running into the ORA-01017 error.

C:\Users\xxx>sqlplus /

SQL*Plus: Release 11.2.0.3.0 Production on Thu Aug 14 09:00:29 2014

ERROR:
ORA-01017: invalid username/password; logon denied

When I log in as SYS, here are the os_auth parameter values (os_authent_suffix has to be "" due to an application requirement. We are trying to connect an application from a remote server using windows credentials (ie DOMAIN\APPSVC)

C:\Users\xxx>sqlplus / as sysdba

SQL*Plus: Release 11.2.0.3.0 Production on Thu Aug 14 09:01:26 2014

Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.3.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options

SQL> show parameter os_auth;

NAME                                 TYPE        VALUE
------------------------------------ ----------- ------------------------------
os_authent_prefix                    string      ""
remote_os_authent                    boolean     FALSE

Here is my tnsnames file:

# tnsnames.ora Network Configuration File: C:\app\Oracle11G\product\11.2.0\dbhome_1\network\admin\tnsnames.ora
# Generated by Oracle configuration tools.
ORACLR_CONNECTION_DATA =
  (DESCRIPTION =
    (ADDRESS_LIST =
      (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1521))
    )
    (CONNECT_DATA =
      (SID = CLRExtProc)
      (PRESENTATION = RO)
    )
  )
ORCL =
  (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = CGYORADEV02.corp.DOMAIN.com)(PORT = 1521))
    (CONNECT_DATA =
      (SERVER = DEDICATED)
      (SERVICE_NAME = orcl.corp.DOMAIN.com)
    )
  )

Here is my sqlnet.ora file:

# sqlnet.ora Network Configuration File: C:\app\Oracle11G\product\11.2.0\dbhome_1\network\admin\sqlnet.ora
# Generated by Oracle configuration tools.

# This file is actually generated by netca. But if customers choose to
# install "Software Only", this file wont exist and without the native
# authentication, they will not be able to connect to the database on NT.

SQLNET.AUTHENTICATION_SERVICES= (NTS)

NAMES.DIRECTORY_PATH= (TNSNAMES, EZCONNECT)

I did create the user as below:

SQL> select * from all_users;

USERNAME USER_ID CREATED
------------------------------ ---------- ---------
DOMAIN\XXX 98 14-AUG-14

So the first step i'm trying to prove is that the database server can accept and authorize a windows credential and then I move to the next step in trying to test remote authentication to this database server using OS/Windows authentication

Any help appreciated, thanks in advance

This post has been answered by JohnWatson on Aug 14 2014

Jump to Answer

Locked Post

New comments cannot be posted to this locked post.

Locked on Sep 11 2014

Added on Aug 14 2014

#general-database-discussions

5 comments

3,096 views