aprocaccino
3 years agoLevel 3
User '<anonymous>' attempted to perform a restore
Hello,
Oracle team is complaining that some of their refresh are failing with "failed to open backup file for restore - failover to previous backup".
Investigating, I can see that sometimes, their refreshs are running with an "Anonymous" user which is not allowed to perform the restore, and so that's surely the reason why it fails. I have the following entries in the nbauditreport logs
[root@dc1-bck-srv:~]# nbauditreport | grep -i vmd-rasaora-02
09/29/2022 10:49:17 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 10:15:55 oracle@vmd-rasaora-02.lux.eib.org User 'oracle' is browsing images of client 'vmp-rasaora-01' of type 'Oracle'.
09/29/2022 09:57:27 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 09:35:20 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 09:15:53 oracle@vmd-rasaora-02.lux.eib.org User 'oracle' is browsing images of client 'vmp-rasaora-01' of type 'Oracle'.
09/29/2022 08:48:03 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 08:25:58 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 08:15:50 oracle@vmd-rasaora-02.lux.eib.org User 'oracle' is browsing images of client 'vmp-rasaora-01' of type 'Oracle'.
09/29/2022 07:34:59 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/29/2022 07:15:48 oracle@vmd-rasaora-02.lux.eib.org User 'oracle' is browsing images of client 'vmp-rasaora-01' of type 'Oracle'.
09/29/2022 07:12:57 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
09/28/2022 19:13:55 oracle@vmd-rasaora-02.lux.eib.org User 'oracle' is browsing images of client 'vmp-rasaora-01' of type 'Oracle'.
09/28/2022 19:01:11 <anonymous>@vmd-rasaora-02.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-rasaora-01' of type 'Oracle' but is not authorized.
Or on another failed server :
[root@dc1-bck-srv]nbauditreport | grep vmd-oracle-205
09/21/2022 21:43:36 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 21:43:33 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 20:39:31 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 20:39:31 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 19:27:18 oracle@vmd-oracle-205.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/21/2022 19:11:59 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 19:11:56 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 18:22:31 oracle@vmd-oracle-205.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/21/2022 18:07:11 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 17:01:16 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 13:33:34 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 13:33:34 <anonymous>@vmd-oracle-205.lux.eib. User '<anonymous>' attempted to perform a restore of client 'vmp-oracle-142' of type 'Oracle' but is not authorized.
09/21/2022 12:27:18 oracle@vmd-oracle-205.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
As you can see, sometimes it's the user "oracle" whis is running the restore, and in that case it works.
On a server without problems, there is no mention of this "anonymous" account
[root@dc1-bck-srv]nbauditreport | grep vmt-oracle-121 | grep restore
09/26/2022 12:50:01 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:50:00 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:49:53 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:49:41 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:49:30 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:49:18 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
09/26/2022 12:48:37 oracle@vmt-oracle-121.lux.eib.org User 'oracle' is performing a restore of client 'vmp-oracle-142' of type 'Oracle'.
Have one of you already experienced those messages ?