Information
In Oracle Real Application Clusters (RAC) environments, each instance maintains its own password file for authenticating users with administrative privileges ( SYSDBA SYSOPER SYSBACKUP etc.). If password files are not synchronized across all RAC nodes, certain administrative users may exist on only one node, causing authentication failures when attempting to log in from other nodes.
To ensure seamless remote administration and high availability, all RAC instances must have identical password files.
Maintaining identical password files across all RAC nodes ensures consistent authentication for administrative users across all nodes and remote management of the database without login failures.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
After changes to the password file, all nodes should be synchronized.
Impact:
If password files are not synchronized, privileged users may be unable to authenticate on certain RAC nodes.