I was doing some tasks off from my task list and one of the things exachk highlighted was that we should create user CELLDIAG on cells.
Beginning with Exadata Storage Server Software version 220.127.116.11.0,
the storage server user “CELLDIAG” is created during deployment which allows
access to diagnostics without using a more privileged user.
The benefit of creating and using the “CELLDIAG” user is improved security.
The impact of verifying that the “CELLDIAG” user is created is minimal,
as is the impact of creating the user if it does not exist.
Included steps are straightforward:
create user CELLDIAG password=”SomeGood42Password”;
create role celldiagrole;
grant privilege create on diagpack to role celldiagrole;
grant privilege list on diagpack to role celldiagrole;
grant privilege download on diagpack to role celldiagrole;
grant role celldiagrole to user CELLDIAG;
But when I started to create the user I hit an issue with a password:
CellCLI> create user CELLDIAG password="hello.World1!" CELL-06007: Valid user passwords are 12 to 40 alphanumeric characters with at least one digit, one lowercase letter and one uppercase letter. A new password cannot be the same as the existing password.
No matter what combinations I tried it didn’t work. Until I noticed the part about alphanumeric! Sometimes not paying attention and not being native English speaker has it disadvantages.
So new try was much more successful:
CellCLI> create user CELLDIAG password="Hello12World"; User CELLDIAG successfully created.
And rest of the tasks even a Finnish guy like me could complete. 🙂