on 10-23-2008 11:01 AM
Hi Experts,
I have installed my DEV server,SandBox and PROD servers (in High availability mode).
Now the Network team is telling that i need to do the fresh installation by deleting the existing installation,because the UID and GID is different across all over the landscape.
for example :
For DEV:
uid=206(orapdv) gid=207(dba) groups=205(sapinst),208(oper)
uid=205(pdvadm) gid=206(sapsys) groups=205(sapinst),207(dba),208(oper)
For NWDI:
uid=207(pdiadm) gid=205(sapsys) groups=204(sapinst),206(dba),207(oper)
uid=205(orapdi) gid=206(dba) groups=204(sapinst),207(oper)
But Network team wanted to have a same GID,UID across landscape.
Can anyone let me know,will it be an issue if I proceed with different UID and GID for the different instances?
Please explain.
Regards,
Karthick
there should not be a issue with different UID and GID but when you want to access shared filesysem ie (/usr/sap/trans) then you will have issues. The same is also covered in installation guide. The user ID (UID) and group ID (GID) of SAP users and groups must be identical for all servers
belonging to the same SAP system.
This does not mean that all users and groups have to be installed on all SAP servers.
follow http://help.sap.com/saphelp_nw70/helpdata/EN/87/80d13fa69a4921e10000000a1550b0/frameset.htm
Regards,
-Sunil
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You may face issues with file permission and file ownership while using transport tools across systems.
There are workaronds (changing umask value for users and allowing 777 permissions...) to tackle the situation, but not recommended in an SAP Landscape.
As a best practice you have to maintain same UIDs across the SAP systems. This will make things easier.
/ Manoj
I would not say this is a best practice. Using the same UID etc., the whole SAP Landscape has access to these files as owner, even to the PRD filesystem. This may not be a good idea. It is also confusing when listing files, as the owner changes depending on the system logged into.
For the DB Files etc. the GID as SAPSYS allow correct access. The issue with the Transport system is resolved by SAP and is not as critical as the other files, especially the DB and any downloaded PRD file-transfer scenarios you may have.
Using different UIDs is a very valid option and your Network people should talk to Security and see who wins.
Hi,
I have reinstalled the Distributed PROD instances with the same GID.
Is it necessary that I need to delete DEV,SANDBOX,QAS environments and need to do fresh installation?
I am confused here.please explain.
Network people says that it is SAP decision and not their responsibility.
???
Regards,
Karthick
I am not sure why your network team is asking you to delete & re-install again. As root, these can be easily fixed with chown and chgrp commands after changing the ids in the /etc/passwd & /etc/group files. In your case, you have to be careful because gid seems to be really mixed. You may want to come up with a new numbers and start changing one id at a time. Make sure your systems are completely down before you do the changes.
-Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.