Sometimes a client wants to be able for a user to view log files for an Oracle application. There are many ways to do this:
- Give the user sudo rights to the oracle user.
- Put the user in the oinstall group (assuming that was the default group used in the installation for the oracle user)
- Open up the umask to 0022 so that any user can read the files.
- Do the following:
First, you need to give read access to all of the folders in the chain. Let's say you have a middleware home of:
/u01/oracle/products/middleware
and in there you have a domain home of
$MW_HOME/user_projects/domains/oim_domain
and in there you have a server
$DOMAIN_HOME/servers/oim_server1
In this case every folder between /u01 and oim_server1 would have to be granted 755 privileges. It is easy enough to just go through and chmod each folder in order and then check from a user who has not been granted any of 1-3.
Next, the umask in the .bash_profile does have to be 0027 or better for people to read the files if they are in the correct group.
To make this work here is what needs to happen:
As root, execute the command:
# groupadd oshare
(I made up that group name oshare but you can call it whatever you want).
# usermod -a -G oshare oracle
# usermod -a -G oshare username
(username is the user you want to share files with)
# cd <that oim_server1 folder>
# chown -R oracle:oshare logs
# chmod -R 2755 logs
That should do it. I have not tested this.
To reverse this go back and perform:
# chown -R oracle:oinstall logs
If you want the user to be able to delete files and not just read them, change the 2755 above to 2775.
You will have to do this in any log folder you want to share. I would not advise sharing any other folder. This does include the ADR folders.
