Go to main content

Oracle MiniCluster S7-2 Security Guide

Exit Print View

Updated: October 2021
 
 

User Accounts

MiniCluster includes the user accounts listed in this table.

User
Password
Role
Description
mcinstall
The password is configured during the installation. It can be reset and changed through MCMU.
root
The installation process requires you to create mcinstall as the MCMU primary administrator and create a password. This account is intended to be the primary administrator for the MCMU.
This user account is used for these activities:

  • Performing the system initialization at installation time by running installmc.

  • Administering the system, including VMs using the MCMU BUI and mcmu CLI.

  • To assume the root role (su to root) on application VMs and in the global zone and kernel zones for superuser privileges.
MCMU Supervisor – Account name determined at installation time
The password is configured during the installation.
root
In the MiniCluster software, the supervisor user is only intended to approve or deny MCMU users as they are created and deleted.
This user receives email every time a new MCMU user is created. The new user must be approved by the supervisor and the primary admin (such as mcinstall) for the user account to be enabled.
(Optional) Tenant Admin – Account name determined at user registration time
Determined upon initial log in.
tadmin
This user can perform all post-installation activities (including using OTP to authenticate a user for a single login or session) only on VMs.
This user cannot access the global zone, and cannot run the MCMU BUI or CLI.

Note -  If the user is created with the MCMU CLI, the role is identified as tenant_admin.

(Optional) Secondary Admin – Account name determined at user registration time
Determined upon initial log in.
mcadmin
When an MCMU user is created and assigned as a secondary admin, and has read-only access to non-global zones.
oracle
Set during the DB VM group profile configuration.
root
This user account is used for these activities:

  • Used as the initial login account to database VMs, from which you can configure the database VMs with a database, data, and other accounts, as needed.

  • To assume the root role (su to root) on database VMs for superuser privileges.

When MiniCluster is accessed for the first time, you are prompted to create a new password that adheres to the password policies. See User Authentication and Password Policies.

All actions performed by all MCMU users are logged based on the user's identifier. For information about audit reports, see Auditing and Compliance Reporting.

Note -  MCMU user accounts are not used for the routine use of the system, such as using the applications and databases. Those user accounts are managed through Oracle Solaris, the application, the database on the VMs, and through your site's name services.
Copyright © 2018, 2021, Oracle and/or its affiliates.  
Previous
Next