2026-07-08 10:04:03,154 [Thread-1] INFO commands.StartCommand - Starting ZDT Managed Server... 2026-07-08 10:04:03,522 [Thread-3] INFO commands.BaseCommand - <OUT> 2026-07-08 10:04:03,522 [Thread-3] INFO commands.BaseCommand - <OUT>Initializing WebLogic Scripting Tool (WLST) ... 2026-07-08 10:04:03,522 [Thread-3] INFO commands.BaseCommand - <OUT> 2026-07-08 10:04:03,631 [Thread-5] INFO commands.BaseCommand - <OUT> 2026-07-08 10:04:03,632 [Thread-5] INFO commands.BaseCommand - <OUT>Initializing WebLogic Scripting Tool (WLST) ... 2026-07-08 10:04:03,632 [Thread-5] INFO commands.BaseCommand - <OUT> 2026-07-08 10:04:03,979 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:04,707 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:07,952 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,143 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,144 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,274 [Thread-4] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,527 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,534 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,535 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,536 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index file 2026-07-08 10:04:08,539 [Thread-6] INFO commands.BaseCommand - <ERR>*sys-package-mgr*: can't write index fileCause
Wednesday, July 8, 2026
OEM 24ai emctl.log shows many "*sys-package-mgr*: can't write index file"
Sunday, July 5, 2026
OEM 24ai Configure OMS to listen on specific IP address instead of all IP addresses
[oracle@host01]$ emctl get property -name oracle.sysman.emSDK.svlt.ConsoleServerPort Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. SYSMAN password: Value for property oracle.sysman.emSDK.svlt.ConsoleServerPort for oms host01.dbaplus.ca:4889_Management_Service is 4889 [oracle@host01]$ emctl get property -name oracle.sysman.emSDK.svlt.ConsoleServerHTTPSPort Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. SYSMAN password: Value for property oracle.sysman.emSDK.svlt.ConsoleServerHTTPSPort for oms host01.dbaplus.ca:4889_Management_Service is 4903 [oracle@host01]$ [oracle@host01]$ emctl get property -name oracle.sysman.emSDK.svlt.EMConsoleServerPort Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. SYSMAN password: Value for property oracle.sysman.emSDK.svlt.EMConsoleServerPort for oms host01.dbaplus.ca:4889_Management_Service is 7788Check listening IP with command ss or netstat,
[oracle@host01]$ emctl get property -name oracle.sysman.emSDK.svlt.EMConsoleServerHTTPSPort Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. SYSMAN password: Value for property oracle.sysman.emSDK.svlt.EMConsoleServerHTTPSPort for oms host01.dbaplus.ca:4889_Management_Service is 7799
[oracle@host01]$ ss -ltunp | grep -Ei '4889|4903|7788|7799|Netid|State' Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port Process tcp LISTEN 0 4096 *:7788 *:* users:(("java",pid=18031,fd=25)) tcp LISTEN 0 4096 *:7799 *:* users:(("java",pid=18031,fd=27)) tcp LISTEN 0 4096 *:4903 *:* users:(("java",pid=18031,fd=29)) tcp LISTEN 0 4096 *:4889 *:* users:(("java",pid=18031,fd=28))OEM is listening on all IPs (*) with these four ports.
applicationConnectors: [{ type: http, port: ${EM_CONSOLE_HTTP_PORT}, useDateHeader : ${USE_DATE_HEADER}, httpCompliance: ${HTTP_COMPLIANCE}, idleTimeout : ${IDLE_TIMEOUT} seconds }, { type: "sso-https", port: ${EM_CONSOLE_HTTPS_PORT}, keyStorePath: ${EM_CONSOLE_KEYSTORE_PATH}, keyStoreType: ${KEYSTORE_TYPE}, supportedProtocols: ${SUPPORTED_PROTOCOLS}, supportedCipherSuites:${SUPPORTED_CIPHER_SUITES}, excludedCipherSuites : [""], useDateHeader : ${USE_DATE_HEADER}, httpCompliance: ${HTTP_COMPLIANCE}, idleTimeout : ${IDLE_TIMEOUT} seconds }, { type: http, port: ${EM_UPLOAD_HTTP_PORT}, useDateHeader : ${USE_DATE_HEADER}, httpCompliance: ${HTTP_COMPLIANCE}, idleTimeout : ${IDLE_TIMEOUT} seconds }, { type: "sso-https", port: ${EM_UPLOAD_HTTPS_PORT}, keyStorePath: ${EM_UPLOAD_KEYSTORE_PATH}, keyStoreType: ${KEYSTORE_TYPE}, supportedProtocols: ${SUPPORTED_PROTOCOLS}, supportedCipherSuites:${SUPPORTED_CIPHER_SUITES}, excludedCipherSuites : [""], useDateHeader : ${USE_DATE_HEADER}, httpCompliance: ${HTTP_COMPLIANCE}, idleTimeout : ${IDLE_TIMEOUT} seconds } ]Suppose to listen on IP 10.1.1.28, new connectors as following,
applicationConnectors: [{
type: http,
port: ${EM_CONSOLE_HTTP_PORT},
bindHost: "10.1.1.28",
useDateHeader : ${USE_DATE_HEADER},
httpCompliance: ${HTTP_COMPLIANCE},
idleTimeout : ${IDLE_TIMEOUT} seconds
},
{
type: "sso-https",
port: ${EM_CONSOLE_HTTPS_PORT},
bindHost: "10.1.1.28",
keyStorePath: ${EM_CONSOLE_KEYSTORE_PATH},
keyStoreType: ${KEYSTORE_TYPE},
supportedProtocols: ${SUPPORTED_PROTOCOLS},
supportedCipherSuites:${SUPPORTED_CIPHER_SUITES},
excludedCipherSuites : [""],
useDateHeader : ${USE_DATE_HEADER},
httpCompliance: ${HTTP_COMPLIANCE},
idleTimeout : ${IDLE_TIMEOUT} seconds
},
{
type: http,
port: ${EM_UPLOAD_HTTP_PORT},
bindHost: "10.1.1.28",
useDateHeader : ${USE_DATE_HEADER},
httpCompliance: ${HTTP_COMPLIANCE},
idleTimeout : ${IDLE_TIMEOUT} seconds
},
{
type: "sso-https",
port: ${EM_UPLOAD_HTTPS_PORT},
bindHost: "10.1.1.28",
keyStorePath: ${EM_UPLOAD_KEYSTORE_PATH},
keyStoreType: ${KEYSTORE_TYPE},
supportedProtocols: ${SUPPORTED_PROTOCOLS},
supportedCipherSuites:${SUPPORTED_CIPHER_SUITES},
excludedCipherSuites : [""],
useDateHeader : ${USE_DATE_HEADER},
httpCompliance: ${HTTP_COMPLIANCE},
idleTimeout : ${IDLE_TIMEOUT} seconds
}
]After saving em.conf, restart oms with commands[oracle@host01]$ ss -ltunp | grep -Ei '4889|4903|7788|7799|Netid|State' Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port Process tcp LISTEN 0 4096 [::ffff:10.1.1.28]:4889 *:* users:(("java",pid=158072,fd=28)) tcp LISTEN 0 4096 [::ffff:10.1.1.28]:4903 *:* users:(("java",pid=158072,fd=29)) tcp LISTEN 0 4096 [::ffff:10.1.1.28]:7799 *:* users:(("java",pid=158072,fd=27)) tcp LISTEN 0 4096 [::ffff:10.1.1.28]:7788 *:* users:(("java",pid=158072,fd=25))
Monday, June 15, 2026
OEM 13c & 24ai ASM Instances Targets Showing Down in OEM Console
In Oracle Enterprise Manager (OEM) Cloud Control, ASM instances targets are shown as DOWN in OEM console, and Cluster ASM are shown as "Availability Evaluation Error".
Test Connection on Monitoring Configuration page is successful with both Cluster ASM and all ASM instances.
Cluster ASM and all ASM instances are accessible on their home page after successful logging in with SYS user.
SQL Plus can remotely connect to ASM instances with following connection strings,
connect asmsnmp/pasword@host01-vip/+ASM/+ASM1 as sysdba
connect asmsnmp/pasword@host02-vip/+ASM/+ASM2 as sysdba
SQL> connect asmsnmp/password@host01-vip/+ASM/+ASM1 as sysdba Connected. SQL> connect asmsnmp/password@host02-vip/+ASM/+ASM2 as sysdba Connected.Following command succeeded,
[oracle@host01]$ emctl control agent runCollection "+ASM1_host01":osm_instance Response Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. --------------------------------------------------------------- EMD runCollection completed successfullyBut following command failed with error ORA-12514,
[oracle@host01]$ emctl getmetric agent "+ASM1_host01",osm_instance,Response Oracle Enterprise Manager 24ai Release 1 Copyright (c) 1996, 2024 Oracle Corporation. All rights reserved. Status,oraerr 0,Failed to connect: java.sql.SQLRecoverableException: Listener refused the connection with the following error: ORA-12514\, TNS:listener does not currently know of service requested in connect descriptorCAUSE
LISTENER=(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER)))) # line added by Agent
LISTENER_SCAN3=(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN3)))) # line added by Agent
LISTENER_SCAN2=(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN2)))) # line added by Agent
LISTENER_SCAN1=(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN1)))) # line added by Agent
ASMNET1LSNR_ASM=(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=IPC)(KEY=ASMNET1LSNR_ASM)))) # line added by Agent
ENABLE_GLOBAL_DYNAMIC_ENDPOINT_ASMNET1LSNR_ASM=ON # line added by Agent
VALID_NODE_CHECKING_REGISTRATION_ASMNET1LSNR_ASM=SUBNET # line added by Agent
ENABLE_GLOBAL_DYNAMIC_ENDPOINT_LISTENER_SCAN1=ON # line added by Agent
VALID_NODE_CHECKING_REGISTRATION_LISTENER_SCAN1=OFF # line added by Agent - Disabled by Agent because REMOTE_REGISTRATION_ADDRESS is set
ENABLE_GLOBAL_DYNAMIC_ENDPOINT_LISTENER_SCAN2=ON # line added by Agent
VALID_NODE_CHECKING_REGISTRATION_LISTENER_SCAN2=OFF # line added by Agent - Disabled by Agent because REMOTE_REGISTRATION_ADDRESS is set
ENABLE_GLOBAL_DYNAMIC_ENDPOINT_LISTENER_SCAN3=ON # line added by Agent
VALID_NODE_CHECKING_REGISTRATION_LISTENER_SCAN3=OFF # line added by Agent - Disabled by Agent because REMOTE_REGISTRATION_ADDRESS is set
ENABLE_GLOBAL_DYNAMIC_ENDPOINT_LISTENER=ON # line added by Agent
VALID_NODE_CHECKING_REGISTRATION_LISTENER=SUBNET # line added by Agent
USE_SID_AS_SERVICE_LISTENER=ON
Tuesday, June 9, 2026
Oracle Database how to delete SBT backup record from control file while tape backup not accessible
If your primary goal is to clean up your repository or control file because the physical tape environment is decommissioned. You can permanently remove these expired catalog entries with following steps,
* Allocate maintenance channel with 'dummy' tape device instead of actual physical tape device.
ALLOCATE CHANNEL FOR MAINTENANCE DEVICE TYPE sbt PARMS 'SBT_LIBRARY=oracle.disksbt, ENV=(BACKUP_DIR=/tmp)';
* Crosscheck tape backup, to mark tape backup as expired because the backup is, for sure, not available in 'dummy' tape device.
CROSSCHECK BACKUP DEVICE TYPE sbt;
* Delete expired backup
DELETE NOPROMPT EXPIRED BACKUP DEVICE TYPE sbt;
* Release maintenance channel
RELEASE CHANNEL;
Wednesday, April 22, 2026
OEM 13c WebTier Could Not Be Started Due To The Default OHS Keystore Certificate Expired
OMS start failed with error "WebTier Could Not Be Started."
$ emctl start oms Oracle Enterprise Manager Cloud Control 13c Release 5 Copyright (c) 1996, 2021 Oracle Corporation. All rights reserved. Starting Oracle Management Server... WebTier Could Not Be Started. Error Occurred: WebTier Could Not Be Started. Please check /u01/app/oracle/em13.5/gc_inst/em/EMGC_OMS1/sysman/log/emctl.log for error details
emctl.log shows "Failed to start the server ohs1"
2026-04-19 08:06:38,272 [Thread-1] INFO commands.BaseCommand - <OUT>NMProcess: SEVERE: Failed to start the server ohs1 2026-04-19 08:06:38,275 [Thread-1] INFO commands.BaseCommand - <OUT>NMProcess: <Apr 19, 2026 8:06:38 AM EDT> <WARNING> <Server start command for OHS server 'ohs1' failed due to: [Failed to start the server ohs1 2026-04-19 08:06:38,275 [Thread-1] INFO commands.BaseCommand - <OUT>NMProcess: Check log file /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/system_components/OHS/ohs_nm.log 2026-04-19 08:06:38,275 [Thread-1] INFO commands.BaseCommand - <OUT>NMProcess: Check log file /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/servers/ohs1/logs/ohs1.log]. Please check Node Manager log and/or server 'ohs1' log for detailed information.> ... ... 2026-04-19 08:06:38,754 [main] ERROR commands.BaseCommand - WebTier Could Not Be Started. 2026-04-19 08:06:38,754 [main] ERROR wls.OMSController - OMSController failed for start oms 2026-04-19 08:06:38,755 [main] ERROR wls.OMSController - OMSController Error: WebTier Could Not Be Started. java.lang.Exception: WebTier Could Not Be Started. at oracle.sysman.emctl.commands.StartCommand.startOMS(StartCommand.java:431) ~[emCoreSDKImpl.jar:?] at oracle.sysman.emctl.commands.StartCommand.execute(StartCommand.java:281) ~[emCoreSDKImpl.jar:?] at oracle.sysman.emctl.wls.OMSController.main(OMSController.java:246) [emCoreSDKImpl.jar:?]ohs1.log shows "OHS:2057 Init: (localhost:443) Unable to initialize SSL environment, nzos call nzosSetCredential returned 28791"
[2026-04-19T08:06:37.1384-04:00] [OHS] [ERROR:32] [OH99999] [ossl] [host_id: host01] [host_addr: 10.10.28.25] [pid: 3028810] [tid: 140246783358336] [user: oracle] [VirtualHost: localhost:0] OHS:2057 Init: (localhost:443) Unable to initialize SSL environment, nzos call nzosSetCredential returned 28791 [2026-04-19T08:06:37.1384-04:00] [OHS] [ERROR:32] [OH99999] [ossl] [host_id: host01] [host_addr: 10.10.28.25] [pid: 3028810] [tid: 140246783358336] [user: oracle] [VirtualHost: localhost:0] OHS:2171 NZ Library Error: Unknown errorThe error message shows OHS failed to communicate with locallhost using SSL, it usually means invalid certificate.
$ cd /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/ohs1/keystores/default $ orapki wallet display -wallet ./ Oracle PKI Tool Release 19.0.0.0.0 - Production Version 19.3.0.0.0 Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved. Requested Certificates: User Certificates: Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Trusted Certificates: Subject: CN=CertGenCA,OU=FOR TESTING ONLY,O=MyOrganization,L=MyTown,ST=MyState,C=US $ orapki wallet export -wallet ./ -dn 'CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY' -cert /tmp/export.cert Oracle PKI Tool Release 19.0.0.0.0 - Production Version 19.3.0.0.0 Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved. Operation is successfully completed. $ orapki cert display -cert /tmp/export.cert -summary Oracle PKI Tool Release 19.0.0.0.0 - Production Version 19.3.0.0.0 Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved. Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Issuer: CN=CertGenCA,OU=FOR TESTING ONLY,O=MyOrganization,L=MyTown,ST=MyState,C=US Valid Until: Sat Apr 18 21:54:35 EDT 2026The certificate has expired on Sat Apr 18 21:54:35 EDT 2026.
* orapki should run from the location "<OMS_HOME>/oracle_common/bin" not from the "<OMS_HOME>/bin" * Make sure performing these steps to the OHS stage location not under the instance location: Stage location: <GC_INST>/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/ohs1/keystores/default Instance location:1. Rename existing wallet file
<GC_INST>/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/instances/ohs1/keystores/default/
$ cd /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/ohs1/keystores/default
$ ls -l
total 8
-rw-r----- 1 oracle oinstall 4341 Apr 19 2021 cwallet.sso
-rw------- 1 oracle oinstall 0 Apr 19 2022 cwallet.sso.lck
$ mv cwallet.sso cwallet.sso.expired
2. Create a new auto_login wallet with commandorapki wallet create -wallet <wallet_location> -auto_login_only
$ echo $OMS_HOME
/u01/app/oracle/em13.5/middleware
$ pwd
/u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/ohs1/keystores/default
$ $OMS_HOME/oracle_common/bin/orapki wallet create -wallet ./ -auto_login_only
Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP
Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved.
Operation is successfully completed.
$ ls -l /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/components/OHS/ohs1/keystores/default
total 4
-rw------- 1 oracle oinstall 4085 Apr 19 11:26 cwallet.sso
-rw-r----- 1 oracle oinstall 4341 Apr 19 2021 cwallet.sso.expired
-rw------- 1 oracle oinstall 0 Apr 19 2022 cwallet.sso.lck
$ $OMS_HOME/oracle_common/bin/orapki wallet display -wallet ./
Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP
Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved.
Requested Certificates:
User Certificates:
Trusted Certificates:
3. Add the new self signed certificate to the wallet with command$ $OMS_HOME/oracle_common/bin/orapki wallet add -wallet ./ -dn 'CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY' -keysize 2048 -self_signed -validity 3650 -sign_alg sha256 -auto_login_only Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved. Operation is successfully completed. $ $OMS_HOME/oracle_common/bin/orapki wallet display -wallet ./ Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved. Requested Certificates: User Certificates: Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Trusted Certificates: Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY $ $OMS_HOME/oracle_common/bin/orapki wallet export -wallet ./ -dn 'CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY' -cert /tmp/export.cert Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved. Operation is successfully completed. $ $ $OMS_HOME/oracle_common/bin/orapki cert display -cert /tmp/export.cert -summary Oracle PKI Tool : Version 12.2.1.4.0SECINF-BP Copyright (c) 2004, 2021, Oracle and/or its affiliates. All rights reserved. Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Issuer: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Valid Until: Wed Apr 16 11:26:53 EDT 2036New certificate valid in 10 years.
$ cd /u01/app/oracle/em13.5/gc_inst/user_projects/domains/GCDomain/config/fmwconfig/components $ cp -p ./OHS/ohs1/keystores/default/cwallet.sso ./OHS/instances/ohs1/keystores/defaultIn case of multi OMS environment, OHS instance location is deferent on deferent OMS node, for example
Tuesday, April 21, 2026
How to Check Validity of Server Certificate from Oracle Wallet in Command Line
Command orapki is usually used to manamge Oracle wallet in command line.
For Oracle database installation, orapki can be found from "<ORCLE_HOME>/bin".
For Oracle Enterprise Manager installation, it can be found from "<OMS_HOME>/oracle_common/bin", not from the "<OMS_HOME>/bin".
List certificates with command
$ orapki wallet display -wallet ./
Oracle PKI Tool Release 19.0.0.0.0 - Production
Version 19.3.0.0.0
Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved.
Requested Certificates:
User Certificates:
Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY
Trusted Certificates:
Subject: CN=CertGenCA,OU=FOR TESTING ONLY,O=MyOrganization,L=MyTown,ST=MyState,C=US
$ orapki wallet export -wallet ./ -dn 'CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY' -cert /tmp/export.cert Oracle PKI Tool Release 19.0.0.0.0 - Production Version 19.3.0.0.0 Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved. Operation is successfully completed. $ orapki cert display -cert /tmp/export.cert -summary Oracle PKI Tool Release 19.0.0.0.0 - Production Version 19.3.0.0.0 Copyright (c) 2004, 2019, Oracle and/or its affiliates. All rights reserved. Subject: CN=localhost,OU=GCDomain ohs1,O=FOR TESTING ONLY Issuer: CN=CertGenCA,OU=FOR TESTING ONLY,O=MyOrganization,L=MyTown,ST=MyState,C=US Valid Until: Sat Apr 18 21:54:35 EDT 2026
Sunday, February 1, 2026
SQLcl with Directory Naming (LDAP) and saved credential in Oracle wallet
Thursday, January 29, 2026
OEM 13c shows database and ASM instance DOWN when TCPS (TLS/SSL) enabled
Wednesday, October 29, 2025
APEX (with ORDS) applications error with "Too Many requests Http Status code:429"
Too Many requests Http Status code: 429 Request ID: o9U3yshYc10iRdjSwRRAmg Request Timestamp: 2025-10-29T16:49:31.451274Z The Pool named: |default|lo| reached the maximum ORDS connections.
Wednesday, September 3, 2025
19c datapatch failed with error "ORA-04088: error during execution of trigger 'WMSYS.NO_VM_DDL'"
Patch 37960098 apply (pdb PDB01): WITH ERRORS
logfile: /u01/app/oracle/cfgtoollogs/sqlpatch/37960098/27641878/37960098_apply_CDB01_PDB01_2025Aug20_15_44_17.log (errors)
-> Error at line 140412: script rdbms/admin/owmcvws.plb
- ORA-04088: error during execution of trigger 'WMSYS.NO_VM_DDL'
- ORA-00604: error occurred at recursive SQL level 2
- ORA-04061: existing state of has been invalidated
- ORA-04061: existing state of package body "WMSYS.LT_CTX_PKG" has been
- invalidated
- ORA-04065: not executed, altered or dropped package body "WMSYS.LT_CTX_PKG"
- ORA-06508: PL/SQL: could not find program unit being called: "WMSYS.LT_CTX_PKG"
- ORA-06512: at "WMSYS.LTADM", line 9800
- ORA-04061: existing state of package body "WMSYS.LT_CTX_PKG" has been
- invalidated
- ORA-04065: not executed, altered or dropped package body "WMSYS.LT_CTX_PKG"
- ORA-06508: PL/SQL: could not find program unit being called: "WMSYS.LT_CTX_PKG"
- ORA-06512: at "WMSYS.LTADM", line 9532
- ORA-06512: at "WMSYS.OWM_DYNSQL_ACCESS", line 549
- ORA-06512: at line 17
- ORA-06512: at line 7
- ORA-06512: at line 7
-> Error at line 142841: script rdbms/admin/owmcvws.plb
- ORA-04088: error during execution of trigger 'WMSYS.NO_VM_DDL'
- ORA-00604: error occurred at recursive SQL level 1
- ORA-04068: existing state of packages has been discarded
- ORA-04061: existing state of package body "WMSYS.LTUTIL" has been invalidated
- ORA-04065: not executed, altered or dropped package body "WMSYS.LTUTIL"
- ORA-06508: PL/SQL: could not find program unit being called: "WMSYS.LTUTIL"
- ORA-06512: at "WMSYS.LTADM", line 9437
- ORA-06512: at "WMSYS.OWM_DYNSQL_ACCESS", line 544
- ORA-06512: at line 15
Friday, May 16, 2025
PRCH-1000 : Failed to stop resources running from Oracle home After out-of-place patching
Tuesday, December 17, 2024
APEX 404 Not Found after ORDS upgrade to 23.1 or later when SYS shows NO in column COMMON of DBA_USERS in non-cdb
WARNING: Procedure APEX_ADMIN could not be added to allow list. The function or procedure is a common object. You must execute the following as a common user: begin APEX_240100.wwv_flow_listener.sync_ords_gateway_allow_list; end; WARNING: ORDS migrated 0 entry points from APEX to ORDS PL/SQL Procedure Gateway Allow List.
Not Found HTTP Status Code: 404 Request ID: EHFC-h-DNoA9A0Qo-_W Request Timestamp: 2024-12-17T13:20:38.684973Z Error Code: ORDS-2201 The procedure named apex could not be accessed, it may not be declared, or the user
executing this request may not have been granted execute privilege on the procedure, or a
function specified by security.requestValidationFunction configuration property has prevented
access. Check the spelling of the procedure, check that the execute privilege has been
granted to the caller and check the configured security.requestValidationFunction function. If
using the PL/SQL Gateway Procedure Allow List, check that the procedure has been allowed
via ords_admin.add_plsql_gateway_procedure.
SQL> select version,comments from dba_registry_history where action='UPGRADE' order by action_time; VERSION COMMENTS _____________ _________________________________________ 10.2.0.3.0 Upgraded from 9.2.0.6.0 10.2.0.4.0 Upgraded from 10.2.0.3.0 10.2.0.5.0 Upgraded from 10.2.0.4.0 11.2.0.3.0 Upgraded from 10.2.0.5.0 12.1.0.2.0 Upgraded from 11.2.0.3.0 12.2.0.1.0 Upgraded from 12.1.0.2.0 12.2.0.1.0 Upgraded from 12.1.0.2.0 19.0.0.0.0 Upgraded from 12.2.0.1.0 to 19.7.0.0.0
SQL> select username,common from dba_users where oracle_maintained='Y';
USERNAME COMMON
_____________ _________
SYSTEM NO
SYS NO
SYSDG YES
SYSKM YES
SYSBACKUP YES
SYSRAC YES
DBSNMP NO
... ...
FLOWS_FILES YES
APEX_PUBLIC_ROUTER YES
APEX_240100 YES<entry key="security.requestValidationFunction">ords_util.authorize_plsql_gateway</entry>
<entry key="security.requestValidationFunction">wwv_flow_epg_include_modules.authorize</entry>
connect / as sysdba create table sys.backup_of_user$ as select * from sys.user$; create table sys.backup_of_user$_updated as select * from sys.user$ where bitand(spare1, 256) = 256;
connect / as sysdba update user$ set spare1 = spare1 - bitand(spare1, 128) + 128 where bitand(spare1, 256) = 256; commit;
alter system flush shared_pool;
SQL> select username,common from dba_users where oracle_maintained='Y';
USERNAME COMMON
_____________ _________
SYSTEM YES
SYS YES
SYSDG YES
SYSKM YES
SYSBACKUP YES
SYSRAC YES
DBSNMP YES
... ...
FLOWS_FILES YES
APEX_PUBLIC_ROUTER YES
APEX_240100 YES
Monday, November 25, 2024
Script - List blocking session tree in Oracle single instance or RAC database
-- -----------------------------------------------------------------------------------
-- File Name : sess_blocking_tree.sql
-- Author : https://www.dbaplus.ca
-- Description : Displays session blocking heirarchy
-- Requirements : Access to the following views
-- gv$instance
-- gv$session
-- Usage : @sess_blocking_tree
-- Last Modified: 25-Nov-2024
-- -----------------------------------------------------------------------------------
set termout off
-- ----------------------------------------------------
-- Save current SET variable
-- ----------------------------------------------------
column v_set_save_file new_value V_SET_SAVE_FILE
select 'tmp_SQLPlus_ENV_&_USER' v_set_save_file from dual;
STORE SET &V_SET_SAVE_FILE replace
-- ----------------------------------------------------
-- Save current NLS_DATE_FORMAT
-- ----------------------------------------------------
column v_nls_date_format new_value V_NLS_DATE_FORMAT
select sys_context('USERENV','NLS_DATE_FORMAT') v_nls_date_format from dual;
-- ------------------------------------------------------------------------
-- Show INST_ID column when RAC database has more than one instance running
-- ------------------------------------------------------------------------
column v_inst_id new_value V_INST_ID
select decode(count(*),1,'','INST_ID,') v_inst_id from gv$instance;
-- ------------------------------------------------------------------------
-- SET env variable
-- ------------------------------------------------------------------------
set linesize 512
set pagesize 999
set verify off
column username format a30
column osuser format a10
column machine format a25
alter session set nls_date_format='YYYY-MM-DD HH24:MI:SS';
set termout on
-----------------------------------------------------------------------------
SELECT level,
LPAD(' ', (level-1)*2, ' ') || NVL(s.username, '(oracle)') AS username,
s.osuser, &V_INST_ID
s.sid,
s.serial#,
s.lockwait,
s.status,
s.module,
s.machine,
s.program,
s.logon_Time
from gv$session s
where level > 1
or exists (select 1
from gv$session
where blocking_session = s.sid and blocking_instance=s.inst_id)
connect by prior s.sid = s.blocking_session
and prior s.inst_id=s.blocking_instance
start with s.blocking_session is null;
---------------------------------------------
-- Restore SET variable and NLS_DATE_FORMAT
---------------------------------------------
set termout off
start &V_SET_SAVE_FILE
alter session set nls_date_format='&V_NLS_DATE_FORMAT';
column v_set_save_file clear
column v_nls_date_format clear
column v_inst_id clear
set termout on
Wednesday, April 10, 2024
Oracle Database uses Net Directory Naming with Microsoft Active Directory
Windows Domain controller: DC01.lab.dbaplus.ca - Windows 2022 Workstation 1: wkstn01 – Windows 11 + Oracle Client 19.3+ RU 19.22 Workstation 2: wkstn02 – Oracle Linux 9.3 + Oracle Client 19.3
Sunday, April 7, 2024
Listener failed to start after Oracle Database out-of-place patching
After applying patches on Oracle Database home with out-of-place patching. The listener cannot be started with error,
TNS-01201: Listener cannot find executable <ORACLE_HOME>/bin/oracle for SID <ORACLE_SID>
Saturday, April 6, 2024
PowerShell script to remotely start / stop MS SQL server on multiple machines
This PowerShell script picks up server machines from given text file which includes all SQL server host names.
In order to run the script successfully, it needs following requirements,
1. User who runs the script has to be a domain user account who has start/stop SQL server privileges on all SQL servers listed by the text file.
2. All SQL servers are member of same domain, and each server is listed as one line in a text file.
3. The script file accepts two parameters. First one is operation directive, it should be start, stop or status. Second parameter is full path of SQL server list file, the script will read all servers from the list file.
Friday, March 29, 2024
Install Oracle Database 19c Client on Oracle Linux 9 Subsystem on Windows 11
Friday, March 8, 2024
OEM 13c Log4j Vulnerabilities Security Alert for SQL Developer shipped with Oracle Enterprise Manager (OEM) Cloud Control
$ cd $OMS_HOME$ rm -rf sqldeveloper
Thursday, February 9, 2023
Script - Check LOBSEGMENT Storage Usage of Oracle table BLOB column stored as SECUREFILE or BASICFILE
Monday, January 30, 2023
Oracle Database 12.2/18c/19c ORA-00600: [qosdExpStatRead: expcnt mismatch]
2023-01-29T15:55:03.286965-05:00 Errors in file /u01/app/oracle/diag/rdbms/cdb01/cdb01/trace/cdb01_mz00_513756.trc (incident=97764) (PDBNAME=PDB1): ORA-00600: internal error code, arguments: [qosdExpStatRead: expcnt mismatch], [65561], [25], [3125688], [1], [], [], [], [], [], [], [] PDB1(3):Use ADRCI or Support Workbench to package the incident. See Note 411.1 at My Oracle Support for error and packaging details. 2023-01-29T15:55:03.291141-05:00 Errors in file /u01/app/oracle/diag/rdbms/cdb01/cdb01/trace/cdb01_mz00_513756.trc: ORA-00600: internal error code, arguments: [qosdExpStatRead: expcnt mismatch], [65561], [25], [3125688], [1], [], [], [], [], [], [], []
Saturday, January 28, 2023
19c database createtion getting ORA-46385 On AUDSYS.AUD$UNIFIED
When creating Oracle 19c databases, got errors as following,
comment on table AUDSYS.AUD$UNIFIED is
*
ERROR at line 1:
ORA-46385: DML and DDL operations are not allowed on table
"AUDSYS"."AUD$UNIFIED".It was reported by Oracle support on 19.5. It is still there when creating non-cdb on 19.16. Wednesday, October 12, 2022
Upgrade/patch JDK 8 used by Oracle Enterprise Manager 13.5 OMS and Agent
Starting April 2024, a Holistic patch is being introduced in OEM, consolidating all SPB, CPU, and JDK patches into a single patch. Applying a single patch will upgrade JDK, OPatch to the latest and apply all applicable latest FMW product patches on OMS home. OMSPatcher utility will be used to apply Holistic Patching. There would be no need to upgrade/patch JDK serparately anymore.
Thursday, September 29, 2022
How to Apply Patch on Oracle Enterprise Manger 13c (13.4/13.5) Agent in online / offline mode
Wednesday, August 24, 2022
Patch Oracle WebLogic Server 12c Release 2 12.2.1.x (12.2.1.3, 12.2.1.4) including WLS, OHS, Coherence, ADR and RDA
Thursday, June 16, 2022
Oracle Data Pump Export/Import SODA Collection Data
Wednesday, May 25, 2022
ORA-02291: integrity constraint (WWV_FLOW_FND_GU_INT_G_FK) violated - parent key not found - When Importing Workspace In APEX configured with ORDS & WebLogic
ORA-02291: integrity constraint (APEX_200100.WWV_FLOW_FND_GU_INT_G_FK) violated - parent key not found ORA-06512: at "APEX_200100.WWV_FLOW_FND_USER_INT", line 2067 ORA-06512: at "APEX_200100.WWV_FLOW_FND_USER_API", line 339 ORA-06512: at line 2 02291. 00000 - "integrity constraint (%s.%s) violated - parent key not found" *Cause: A foreign key value has no matching primary key value. *Action: Delete the foreign key or add a matching primary key.
Friday, April 29, 2022
EM 12c/13c Configure Enterprise Manager with custom or third-party SSL Certificates
Thursday, March 31, 2022
Script - Enable Customized Password Complexity in Oracle non-cdb or cdb environment
Friday, March 11, 2022
Export/import APEX workspace and application with SQLcl
Monday, March 7, 2022
Database failed to start with errors ORA-01565 ORA-17503 ORA-27300 ORA-27301 ORA-27302
$ srvctl start database -db db01 PRCR-1079 : Failed to start resource ora.db01.db CRS-5017: The resource action "ora.db01.db start" encountered the following error: ORA-01078: failure in processing system parameters ORA-01565: error in identifying file '+DATA/db01/parameterfile/spfiledb01.ora' ORA-17503: ksfdopn:10 Failed to open file +DATA/db01/parameterfile/spfiledb01.ora ORA-27300: OS system dependent operation:open failed with status: 13 ORA-27301: OS failure message: Permission denied ORA-27302: failure occurred at: sskgmsmr_7 . For details refer to "(:CLSN00107:)" in "/u01/app/grid/diag/crs/host01/crs/trace/ohasd_oraagent_grid.trc". CRS-2674: Start of 'ora.db01.db' on 'host01' failed
Thursday, March 3, 2022
Oracle SQLcl installation and configuration
Saturday, February 26, 2022
Script Find the Regular Source File of the Multi-level Symbolic Link on Linux / Unix
Monday, February 21, 2022
Oracle RAC 19c pdb open failed with ORA-12963: A read-only instance cannot be the first instance to open a database
sys@rac01> alter pluggable database pdb1 open; alter pluggable database pdb1 open * ERROR at line 1: ORA-12963: A read-only instance cannot be the first instance to open a database.
Wednesday, February 16, 2022
Oracle 12.2 EXPDP Fails Exporting Full PDB with ORA-39126 On KUPW$WORKER.FETCH_XML_OBJECTS
Wednesday, February 9, 2022
Configure Reverse Path Filter parameter "rp_filter" on Oracle Linux and Red Hat Enterprise Linux
When installing Oracle Grid Infrastructure (GI) 12c or higher version (18c, 19c, 21c), multiple network interfaces (NIC) can be used as private interconnection to implement inter-communication load balance and failover. However, if this configuration is adopted on Oracle Linux (OL) 6 or Red Hat Enterprise Linux (RHEL) 6 or higher, the GI installation prerequists checking shows error
Saturday, February 5, 2022
Oracle Cloud Infrastructure Plugin xxx not present for instance ocid1.instance.oc1.*
Wednesday, February 2, 2022
Oracle 19c GI installation failed with PRVG-13605 : Query of chrony daemon for its time sources could not be performed
The issue happens on Oracle Linux / Red Hat Enterprise Linux 7/8 on which chronyd is adopted as the network time protocol daemon instead of ntpd. When installing Oracle Grid Infrastructure 19c on these platform, the installation fails during prerequisit check, the message shows that
Verifying Network Time Protocol (NTP) ...FAILED
Verifying chrony daemon is synchronized with at least one external time
source ...FAILED
rac01: PRVG-13605 : Query of chrony daemon for its time sources could not
be performed on node "rac01".
PRVG-2043 : Command "/usr/bin/chronyc sources " failed on node
"rac01" and produced the following output:
506 Cannot talk to daemon
rac02: PRVG-13605 : Query of chrony daemon for its time sources could not
be performed on node "rac02".
PRVG-2043 : Command "/usr/bin/chronyc sources " failed on node
"rac02" and produced the following output:
506 Cannot talk to daemon
Friday, December 31, 2021
EM 12c/13c Send Email Notification When OMS or Repository Database Down
EM 13c Agent is unreachable as its first severity has not yet come after blackout end
The agent status shows "Agent Unreachable (Post Blackout)" in Oracle Enterprise Manager 13c console. On the agent home page, it shows following error message,
Agent is unreachable as its first severity has not yet come after blackout end.
It is seen in EM 13c, can can be fixed by running following commands on agent host,
Thursday, December 30, 2021
RMAN left defunct server processes and NetBackup nborautil processes
Friday, December 10, 2021
Mount DVD/CDROM with command on Linux CentOS / Red Hat / Oracle Linux / Ubuntu
Sunday, December 5, 2021
Oracle 19c Installation on Red Had Enterprise Linux 8 / Oracle Linux 8 – [INS-08101] Unexpected error while executing the action at state: ‘supportedOSCheck’
[INS-08101] Unexpected error while executing the action at state: 'supportedOSCheck'
Cause - No additional information available. Action - Cantact Oracle Spport Services or refer to the software manual. Summary - java.lang.NullPointerException
Wednesday, December 1, 2021
Use oradebug To List All Internal Events Set In Oracle Database
Tuesday, November 30, 2021
Identify SQL statements consuming temporary tablespace
Monday, November 15, 2021
Oracle 19c root.sh not working while gridSetup.sh switchGridHome to software-only installation
Saturday, November 6, 2021
EM 12c/13c Agent Unreachable (Agent is running but is currently not read to accept client requests)
Host=host01.dbaplus.ca
Target type=Agent
Target name=host01.dbaplus.ca:3872
Categories=Availability
Message=Agent Unreachable (REASON = The agent is running but is currently not ready to accept client requests). Host is reachable.
Severity=Critical
Event reported time=Nov 6, 2021 12:36:48 PM EDT
Operating System=SunOS
Platform=sparc
Event Type=Target Availability
Event name=Status
Availability status=Agent Unreachable
Update Details:
Agent Unreachable (REASON = The agent is running but is currently not ready to accept client requests). Host is reachable.
Friday, November 5, 2021
Javascript/CSS: Add Copy-to-Clipboard Button in HTML Code Example
Wednesday, November 3, 2021
Javascript/CSS: Add Line Number to HTML Source Code Block
When I shared the source code in my blog before, I used to reference source code by highlighting the code lines with HTML tag. It was not an issue until I had many references to different lines of a long clode block. It could take too much of my time to highlight or mark the reference when I post an article. Therefore, I added the line number to the source code in my posts. The line-numbered code block looks like,