Skip Headers
Oracle® Database Vault Administrator's Guide
11g Release 2 (11.2)

Part Number E10576-01
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
View PDF

B Disabling and Enabling Oracle Database Vault

This appendix contains:

When You Must Disable Oracle Database Vault

You may need to disable Oracle Database Vault to perform upgrade tasks or correct erroneous configurations. You can reenable Oracle Database Vault after you complete the corrective tasks.

Note:

Be aware that if you disable Oracle Database Vault, the privileges that were revoked from existing users and roles during installation remain in effect. See "Privileges That Are Revoked or Prevented from Existing Users and Roles" for a listing of the revoked privileges.

The following situations require you to disable Oracle Database Vault:

Checking if Oracle Database Vault Is Enabled or Disabled

You can check if Oracle Database Vault has already been enabled or disabled by querying the V$OPTION table. Any user can query this table. If Oracle Database Vault is enabled, the query returns TRUE. Otherwise, it returns FALSE.

Remember that the PARAMETER column value is case sensitive. For example:

SELECT * FROM V$OPTION WHERE PARAMETER = 'Oracle Database Vault';

If Oracle Database Vault is enabled, the following output appears:

PARAMETER                     VALUE
----------------------------- -----------------------
Oracle Database Vault         TRUE

Step 1: Disable Oracle Database Vault

This section contains the following topics:

Note:

After you disable Oracle Database Vault, you still can run the Oracle Database Vault API functions. Note also that after you disable Oracle Database Vault, the ANY privileges are available.

Disabling Oracle Database Vault on UNIX Systems

Follow these steps to disable Oracle Database Vault on UNIX systems:

  1. Turn off the software processes. Make sure that the environment variables, ORACLE_HOME, ORACLE_SID, and PATH are correctly set.

    Stop the dbconsole process in case it is running. For both single-instance and Oracle Real Application Clusters installations, run the following command at a command prompt:

    emctl stop dbconsole
    

    For single-instance installations, shut down the database instance:

    sqlplus sys as sysoper
    Enter password: password
    
    SHUTDOWN NORMAL
    EXIT
    

    For Oracle Real Application Clusters (Oracle RAC) installations, shut down each database instance as follows, from a command prompt:

    srvctl stop database -d db_name
    

    If you cannot connect to the database, then proceed to the next step.

  2. At a command prompt, run the following commands to turn off the Oracle Database Vault option:

    cd $ORACLE_HOME/rdbms/lib
    make -f ins_rdbms.mk dv_off ioracle 
    

    For Oracle RAC installations, run these commands on all nodes.

  3. In SQL*Plus, start the database.

    For single-instance database installations:

    sqlplus sys as sysoper
    Enter password: password
    
    STARTUP
    

    For Oracle RAC installations:

    srvctl start database -d db_name 
    
  4. If the reason you needed to disable Oracle Database Vault was because of forgotten passwords, then connect SQL*Plus as SYS or SYSTEM and reset the password.

    For example:

    sqlplus system
    Enter password: password
    
    ALTER USER DBVOWNER IDENTIFIED BY password;
    

Disabling Oracle Database Vault on Microsoft Windows Systems

Follow these steps to disable Oracle Database Vault on Windows systems:

  1. Stop the database service.

    In the Control Panel, under Administrative Services, select the Services utility. Select the Standard tab, right-click the following services, and from the menu, select Stop:

    • OracleServiceSID

    • OracleHOMETNSListener

  2. Under ORACLE_HOME\bin, rename the oradvrelease_number.dll file, for example, oradv10_backup.dll or oradv11_backup.dll.

  3. Restart the database service.

    In the Control Panel, under Administrative Services, select the Services utility. Select the Standard tab, right-click the following services, and from the menu, select Start:

    • OracleServiceSID

    • OracleHOMETNSListener

  4. For RAC systems, repeat these steps for each node on which the database is installed.

  5. If the reason you needed to disable Oracle Database Vault was because of forgotten passwords, then log in to SQL*Plus as SYS or SYSTEM and reset the password.

    For example:

    sqlplus system
    Enter password: password
    
    ALTER USER DBVOWNER IDENTIFIED BY password;
    

Step 2: Perform the Required Tasks

At this stage, Oracle Database Vault is disabled. You can perform the following types of activities:

Step 3: Enable Oracle Database Vault

This section contains the following topics:

Enabling Oracle Database Vault on UNIX Systems

Use the following steps to enable Oracle Database Vault on UNIX systems:

  1. Turn off the software processes. Ensure that the environment variables, ORACLE_HOME, ORACLE_SID, and PATH are correctly set.

    Stop the dbconsole process in case it is running. For both single-instance and Oracle RAC installations, use the following command:

    emctl stop dbconsole
    
  2. Shut down the database instance.

    For single-instance installations:

    sqlplus sys as sysoper
    Enter password: password
    
    SHUTDOWN NORMAL
    EXIT
    

    For Oracle RAC installations:

    srvctl stop database -d db_name
    
  3. At command promopt, run the following commands to turn on the Oracle Database Vault option:

    cd $ORACLE_HOME/rdbms/lib
    make -f ins_rdbms.mk dv_on ioracle
    

    For Oracle RAC installations, run these commands on all nodes.

  4. In SQL*Plus, start the database:

    For single-instance database installations:

    sqlplus sys as sysoper
    Enter password: password
    
    STARTUP
    EXIT
    

    For Oracle RAC installations, at a command prompt:

    srvctl start database -d db_name
    

Enabling Oracle Database Vault on Microsoft Windows Systems

Follow these steps to enable Oracle Database Vault on Windows systems:

  1. Stop the database service.

    In the Control Panel, under Administrative Services, select the Services utility. Select the Standard tab, right-click the following services, and from the menu, select Stop:

    • OracleServiceSID

    • OracleHOMETNSListener

  2. Under ORACLE_HOME\bin, name the backup of the oradvrelease_number.dll file to its original name.

    For example, if you named it oradv10_backup.dll, then name it back to oradv10.dll.

  3. Restart the database service.

    In the Control Panel, under Administrative Services, select the Services utility. Select the Standard tab, right-click the following services, and from the menu, select Start:

    • OracleServiceSID

    • OracleHOMETNSListener

  4. For Oracle RAC installations, repeat these steps for each node on which the database is installed.