My Oracle Support Banner

Minimum Privileges / Group Membership a Regular User (NonAdmin) or Service Account Needs to Register Databases / Network Services with DBCA for EUS or Create Tnsnames Entries in OID OracleContext (TNS-04411: Directory service: permission denied) (Doc ID 1428080.1)

Last updated on AUGUST 15, 2024

Applies to:

Oracle Net Services - Version 11.1.0.6 and later
Oracle Internet Directory - Version 10.1.2 and later
Advanced Networking Option - Version 11.0 and later
Information in this document applies to any platform.

Goal

Created a non-administrator user or service account in Oracle Internet Directory (OID) only for registering network services, i.e., to create tnsnames entries into the cn=oraclecontext,dc=<COMPANY>,dc=com realm context.

This user will be using Net Manager (Netmgr) and/or Oracle Directory Services Manager (ODSM, OID 12c/11g) / Oracle Directory Manager (OID 10g) to register the entries, or Database Configuration Assistant (DBCA) to register databases for Enterprise User Security (EUS).

What are the minimum privileges/groups this ID needs for these purposes?

 

Below is a potential DBCA error authenticating with a regular user without sufficient permissions:

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.