Implications of REMOTE_OS_AUTHENT = true

I am trying to understand the authentication process for managing application users' connections to a database. If the paramter REMOTE_OS_AUTHENT is set to TRUE, and user names and passwords are stored in the database, does this mean that an application user could access the database over a network?

The REMOTE_OS_AUTHENT parameter lets the database decide if the authentication can be performed by the remote operating system, or if it must be performed by the database. If REMOTE_OS_AUTHENT=TRUE, then the user can authenticate just to their remote operating system and need no further authentication to gain access to the database. If REMOTE_OS_AUTHEN=FALSE, then only database authentication is available from these remote systems.

I strongly suggest reading the Oracle 9i Security Overview document as many of these questions are answered there.

For More Information

• Dozens more answers to tough Oracle questions from Brian Peasland are available.
• The Best Oracle Web Links: tips, tutorials, scripts, and more.
• Have an Oracle or SQL tip to offer your fellow DBAs and developers? The best tips submitted will receive a cool prize. Submit your tip today!
• Ask your technical Oracle and SQL questions -- or help out your peers by answering them -- in our live discussion forums.
• Ask the Experts yourself: Our SQL, database design, Oracle, SQL Server, DB2, metadata, object-oriented and data warehousing gurus are waiting to answer your toughest questions.