Oracle ACS will leaves you with default passwords for all Exadata components which need to be changed before go live.
To change these passwords follow below steps:
1- Login to any of your compute nodes as root and change root, oracle and grid passwords on compute nodes:
--root
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin root"
xadbadm01: Changing password for user root.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user root.
xadbadm02: passwd: all authentication tokens updated successfully.
--oracle
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin oracle"
xadbadm01: Changing password for user oracle.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user oracle.
xadbadm02: passwd: all authentication tokens updated successfully.
--grid
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin grid"
xadbadm01: Changing password for user grid.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user grid.
xadbadm02: passwd: all authentication tokens updated successfully.
2- Login as root to any of your cell servers and change root, celladmin, and cellmonitor:
--root
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin root"
xaceladm01: Changing password for user root.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user root.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user root.
xaceladm03: passwd: all authentication tokens updated successfully.
Repeat the same on the second Infiniband Switch (xasw-ibb01).
####
Reference:
How to change OS user password for Cell Node, Database Node , ILOM, KVM , Infiniband Switch , GigaBit Ethernet Switch and PDU on Exadata Database Machine (Doc ID 1291766.1)
To change these passwords follow below steps:
1- Login to any of your compute nodes as root and change root, oracle and grid passwords on compute nodes:
--root
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin root"
xadbadm01: Changing password for user root.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user root.
xadbadm02: passwd: all authentication tokens updated successfully.
--oracle
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin oracle"
xadbadm01: Changing password for user oracle.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user oracle.
xadbadm02: passwd: all authentication tokens updated successfully.
--grid
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin grid"
xadbadm01: Changing password for user grid.
xadbadm01: passwd: all authentication tokens updated successfully.
xadbadm02: Changing password for user grid.
xadbadm02: passwd: all authentication tokens updated successfully.
2- Login as root to any of your cell servers and change root, celladmin, and cellmonitor:
--root
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin root"
xaceladm01: Changing password for user root.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user root.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user root.
xaceladm03: passwd: all authentication tokens updated successfully.
--celladmin
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin celladmin"
xaceladm01: Changing password for user celladmin.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user celladmin.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user celladmin.
xaceladm03: passwd: all authentication tokens updated successfully.
--cellmonitor
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin cellmonitor"
xaceladm01: Changing password for user cellmonitor.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user cellmonitor.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user cellmonitor.
xaceladm03: passwd: all authentication tokens updated successfully.
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin celladmin"
xaceladm01: Changing password for user celladmin.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user celladmin.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user celladmin.
xaceladm03: passwd: all authentication tokens updated successfully.
--cellmonitor
[root@xadbadm01 ~]# dcli -g dbs_group -l root "echo new_password | passwd --stdin cellmonitor"
xaceladm01: Changing password for user cellmonitor.
xaceladm01: passwd: all authentication tokens updated successfully.
xaceladm02: Changing password for user cellmonitor.
xaceladm02: passwd: all authentication tokens updated successfully.
xaceladm03: Changing password for user cellmonitor.
xaceladm03: passwd: all authentication tokens updated successfully.
3- For ILOM passwwords, you can do it in one step by creating new set of comput nods and cell nods in dbs_cell_group:
[root@tudbadm01 ~]# cat dbs_cell_group
xadbadm01
xadbadm02
xaceladm01
xaceladm02
xaceladm03
[root@xadbadm01 ~]# dcli -g dbs_cell_group -l root " ipmitool sunoem cli 'set /SP/users/root password=new_password' new_password "
tudbadm01: Changing password for user root.
tudbadm01: passwd: all authentication tokens updated successfully.
tudbadm02: Changing password for user root.
tudbadm02: passwd: all authentication tokens updated successfully.
[root@tudbadm01 ~]# cat dbs_cell_group
tudbadm01
tudbadm02
tuceladm01
tuceladm02
tuceladm03
[root@tudbadm01 ~]# dcli -g dbs_cell_group -l root " ipmitool sunoem cli 'set /SP/users/root password=new_password' new_password "
xadbadm01: Connected. Use ^D to exit.
xadbadm01: -> set /SP/users/root password=
xadbadm01: Changing password for user /SP/users/root...
xadbadm01: Enter new password again: ************
xadbadm01: New password was successfully set for user /SP/users/root
xadbadm01:
xadbadm01: -> Session closed
xadbadm01: Disconnected
xadbadm02: Connected. Use ^D to exit.
xadbadm02: -> set /SP/users/root password=
xadbadm02: Changing password for user /SP/users/root...
xadbadm02: Enter new password again: ************
xadbadm02: New password was successfully set for user /SP/users/root
xadbadm02:
xadbadm02: -> Session closed
xadbadm02: Disconnected
xaceladm01: Connected. Use ^D to exit.
xaceladm01: -> set /SP/users/root password=
xaceladm01: Changing password for user /SP/users/root...
xaceladm01: Enter new password again: ************
xaceladm01: New password was successfully set for user /SP/users/root
xaceladm01:
xaceladm01: -> Session closed
xaceladm01: Disconnected
xaceladm02: Connected. Use ^D to exit.
xaceladm02: -> set /SP/users/root password=
xaceladm02: Changing password for user /SP/users/root...
xaceladm02: Enter new password again: ************
xaceladm02: New password was successfully set for user /SP/users/root
xaceladm02:
xaceladm02: -> Session closed
xaceladm02: Disconnected
xaceladm03: Connected. Use ^D to exit.
xaceladm03: -> set /SP/users/root password=
xaceladm03: Changing password for user /SP/users/root...
xaceladm03: Enter new password again: ************
xaceladm03: New password was successfully set for user /SP/users/root
xaceladm03:
xaceladm03: -> Session closed
xaceladm03: Disconnected
4- Infiniband Switches: we need to change all of root, nm2user, ilom-operator, and ilom-admin passwords ; login as root and execute the following:
-- root
[root@xasw-iba01 ~]# passwd
Changing password for user root.
New UNIX password:
Retype new UNIX password:
passwd: all authentication tokens updated successfully.
-- nm2user
[root@xasw-iba01 ~]# passwd nm2user
Changing password for user nm2user.
New UNIX password:
Retype new UNIX password:
passwd: all authentication tokens updated successfully.
-- ilom-admin
[root@xasw-iba01 ~]# ssh -l ilom-admin xasw-iba01
ilom-admin@xasw-iba01's password:
Last login: Tue Aug 2 19:33:17 2016 from tusw-iba01.tu.edu.sa
Oracle(R) Integrated Lights Out Manager
Version ILOM 3.0 r47111
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.
-> set /SP/users/ilom-admin password
Enter new password: *********
Enter new password again: *********
-- ilom-operator
-> set /SP/users/ilom-operator password
Enter new password: *********
Enter new password again: *********
Repeat the same on the second Infiniband Switch (xasw-ibb01).
5- Cisco Switch: Connect to cisco switch using admin user and execute the following:
xasw-adm01>enable
Password:
xasw-adm01#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
xasw-adm01(config)#enable password new_password
The enable secret you have chosen is the same as your enable password.
This is not recommended. Re-enter the enable secret.
xasw-adm01(config)#end
xasw-adm01#write memory
####
Reference:
How to change OS user password for Cell Node, Database Node , ILOM, KVM , Infiniband Switch , GigaBit Ethernet Switch and PDU on Exadata Database Machine (Doc ID 1291766.1)
No comments:
Post a Comment