Post check 1

#!/bin/bash


export ORACLE_SID=<your_cdb_sid>

export ORAENV_ASK=NO

. oraenv > /dev/null


LOG_DIR=/tmp/post_migration_check

mkdir -p "$LOG_DIR"

LOGFILE="$LOG_DIR/post_migration_check_$(date +%Y%m%d_%H%M%S).log"


exec_sql() {

sqlplus -s "/ as sysdba" <<EOF

set pages 100

set lines 200

set feedback off

set heading on

set echo off

col name for a20

col open_mode for a20

col restricted for a15

col object_type for a20

col object_name for a40

col owner for a20

col comp_name for a35

col status for a15

col wallet_status for a20

col tablespace_name for a30

col encrypted for a10

col activating_pdbname for a25

$1

exit

EOF

}


check_flag() {

  if grep -iq "$2" <<< "$1"; then

    echo "$3 : PASSED" | tee -a $LOGFILE

  else

    echo "$3 : NOT PASSED" | tee -a $LOGFILE

  fi

}


echo "=== Post Migration Certification Checks ===" | tee -a $LOGFILE


# Step 1: PDB Open Status

echo -e "\n--- Step 1: CDB/PDB Open Modes ---" | tee -a $LOGFILE

pdb_open_status=$(exec_sql "SELECT name, open_mode, restricted FROM v\$pdbs;")

echo "$pdb_open_status" | tee -a $LOGFILE

check_flag "$pdb_open_status" "READ WRITE" "Step 1: CDB/PDB Open Status"


# Step 2: PDB Plug-in Violations

echo -e "\n--- Step 2: PDB Plug-in Violations ---" | tee -a $LOGFILE

pdb_violation_check=$(exec_sql "SELECT name, message_type, status, cause FROM pdb_plug_in_violations WHERE status='PENDING';")

echo "$pdb_violation_check" | tee -a $LOGFILE

check_flag "$pdb_violation_check" "no rows selected" "Step 2: PDB Plug-in Violations"


# Step 3: Listener Parameter

echo -e "\n--- Step 3: Listener Parameter ---" | tee -a $LOGFILE

listener_param=$(exec_sql "show parameter listener;")

echo "$listener_param" | tee -a $LOGFILE

check_flag "$listener_param" "listener" "Step 3: Listener Parameter"


# Step 4: SGA Parameters

echo -e "\n--- Step 4: SGA Parameters ---" | tee -a $LOGFILE

sga_params=$(exec_sql "show parameter sga;")

echo "$sga_params" | tee -a $LOGFILE

check_flag "$sga_params" "sga_target" "Step 4: SGA Parameters"


# Step 5: PGA Parameters

echo -e "\n--- Step 5: PGA Parameters ---" | tee -a $LOGFILE

pga_params=$(exec_sql "show parameter pga;")

echo "$pga_params" | tee -a $LOGFILE

check_flag "$pga_params" "pga_aggregate_target" "Step 5: PGA Parameters"


# Step 6: INVALID Objects in All PDBs

echo -e "\n--- Step 6: INVALID Objects in All PDBs ---" | tee -a $LOGFILE

invalid_objects_found=0

pdb_list=$(exec_sql "set heading off; SELECT name FROM v\$pdbs WHERE open_mode='READ WRITE';")

for pdb in $pdb_list; do

  echo -e "\nChecking INVALID objects in $pdb..." | tee -a $LOGFILE

  invalid_objects_in_pdb=$(sqlplus -s "/ as sysdba" <<EOF

ALTER SESSION SET CONTAINER=$pdb;

set pages 100 lines 200

col object_name for a40

col object_type for a20

col owner for a20

SELECT owner, object_type, object_name FROM dba_objects WHERE status='INVALID';

exit

EOF

)

  echo "$invalid_objects_in_pdb" | tee -a $LOGFILE

  if echo "$invalid_objects_in_pdb" | grep -iq "no rows selected"; then

    echo "Step 6: INVALID objects in $pdb : PASSED" | tee -a $LOGFILE

  else

    echo "Step 6: INVALID objects in $pdb : NOT PASSED" | tee -a $LOGFILE

    invalid_objects_found=1

  fi

done


# Step 7: Component Status

echo -e "\n--- Step 7: Component Status ---" | tee -a $LOGFILE

component_status=$(exec_sql "SELECT comp_name, version, status FROM dba_registry;")

echo "$component_status" | tee -a $LOGFILE

check_flag "$component_status" "VALID" "Step 7: Component Status"


# Step 8: TDE Wallet Status

echo -e "\n--- Step 8: TDE Wallet Status ---" | tee -a $LOGFILE

tde_wallet_status=$(exec_sql "SELECT inst_id, wallet_type, wallet_status FROM gv\$encryption_wallet;")

echo "$tde_wallet_status" | tee -a $LOGFILE

check_flag "$tde_wallet_status" "OPEN" "Step 8: TDE Wallet Status"


# Step 9: TDE Keys Registered in PDBs

echo -e "\n--- Step 9: TDE Keys in PDBs ---" | tee -a $LOGFILE

tde_keys_registered=$(exec_sql "SELECT key_id, activating_pdbname FROM v\$encryption_keys;")

echo "$tde_keys_registered" | tee -a $LOGFILE

check_flag "$tde_keys_registered" "KEY_ID" "Step 9: TDE Keys Registered"


# Step 10: SSL Connection Check

echo -e "\n--- Step 10: SSL Connections ---" | tee -a $LOGFILE

ssl_connection_status=$(exec_sql "SELECT sid, serial#, network_service_banner FROM v\$session_connect_info WHERE network_service_banner LIKE '%SSL%';")

echo "$ssl_connection_status" | tee -a $LOGFILE

check_flag "$ssl_connection_status" "SSL" "Step 10: SSL Connection Enabled"


# Step 11: Encrypted Tablespaces

echo -e "\n--- Step 11: Encrypted Tablespaces ---" | tee -a $LOGFILE

encrypted_tablespaces=$(exec_sql "SELECT tablespace_name, encrypted FROM dba_tablespaces WHERE contents='PERMANENT';")

echo "$encrypted_tablespaces" | tee -a $LOGFILE

check_flag "$encrypted_tablespaces" "YES" "Step 11: Encrypted Tablespaces"


# Step 12: RMAN Controlfile Autobackup

echo -e "\n--- Step 12: RMAN Controlfile Autobackup ---" | tee -a $LOGFILE

rman_autobackup_status=$(rman target / <<EOF

show all;

exit

EOF

)

echo "$rman_autobackup_status" | tee -a $LOGFILE

check_flag "$rman_autobackup_status" "CONFIGURE CONTROLFILE AUTOBACKUP ON" "Step 12: RMAN Controlfile Autobackup"


# Step 13: Autosys Jobs

echo -e "\n--- Step 13: Autosys Jobs ---" | tee -a $LOGFILE

if command -v autorep >/dev/null; then

  autosys_job_output=$(autorep -J % -q)

  echo "$autosys_job_output" | tee -a $LOGFILE

  check_flag "$autosys_job_output" "job" "Step 13: Autosys Jobs Found"

else

  echo "Step 13: Autosys not installed or not in PATH. Please validate manually." | tee -a $LOGFILE

fi


# Step 14: OEM Monitoring (Outstanding Alerts)

echo -e "\n--- Step 14: OEM Outstanding Alerts ---" | tee -a $LOGFILE

oem_alerts_output=$(exec_sql "SELECT object_type, reason FROM dba_outstanding_alerts;")

echo "$oem_alerts_output" | tee -a $LOGFILE

check_flag "$oem_alerts_output" "no rows selected" "Step 14: OEM Alert Status"


# Step 15: SNOW Entry Check (custom table)

echo -e "\n--- Step 15: SNOW Entries (Custom Table) ---" | tee -a $LOGFILE

snow_entry_output=$(exec_sql "SELECT * FROM pdb_snow_entries;")

echo "$snow_entry_output" | tee -a $LOGFILE

check_flag "$snow_entry_output" "INC" "Step 15: SNOW Entry Presence"


# Step 16: Cloakware Users Onboarded

echo -e "\n--- Step 16: Cloakware Standard Users ---" | tee -a $LOGFILE

cloakware_user_check=$(exec_sql "SELECT username FROM dba_users WHERE username IN ('OPS_USER', 'APP_USER', 'SERVICE_ACCT');")

echo "$cloakware_user_check" | tee -a $LOGFILE

check_flag "$cloakware_user_check" "OPS_USER" "Step 16: Cloakware User Presence"


echo -e "\n=== ✅ All Post-Migration Checks Completed. Log: $LOGFILE ==="

Comments

Post a Comment

Popular posts from this blog

Database growth

#!/bin/bash # Log file LOGFILE="db_growth_check.log" echo "Checking yearly database growth on all running Oracle databases..." > $LOGFILE echo "DATABASE_NAME | YEAR | GROWTH_GB" >> $LOGFILE echo "---------------------------------" >> $LOGFILE # Find running Oracle instances (excluding ASM and APX) ps -ef | grep pmon | grep -v grep | grep -Ev "(\+ASM|APX)" | awk -F'_' '{print $3}' | while read -r ORACLE_SID do     if [[ -n "$ORACLE_SID" ]]; then         echo "Processing database: $ORACLE_SID"         # Set Oracle environment         export ORACLE_SID=$ORACLE_SID         export ORAENV_ASK=NO         . oraenv > /dev/null 2>&1         # Run SQL query to check yearly database growth         SQL_OUTPUT=$(sqlplus -s / as sysdba <<EOF SET HEADING OFF; SET FEEDBACK OFF; SELECT '$ORACLE_SID' AS DATABASE_NAME,  ...
Read more

DBA Day-2 ve

 Operating system  CPU mpstat top  load average  pidstat dstat -vr strace---> debug if system CPU usage % is high but if you dont know then use strace -tp `grep testdb1 2>&1 | head 100 debug if User CPU usage % is high but if you dont know then use 6. jobs (hit enter) 6.1 perf record -F 99 -a -g --sleep 10 (Profiling ) 6.2 perf report -n --stdio 6.3 ./perf-tools/execsnoop Memory vmstat I/O iostat -xmd 1 iotop Network sar -n DEV 1 mtr netstat -antpl | grep 1521 nmcli device status ethtool iperf3 -c 10.1.90.51 https://www.youtube.com/watch?v=eWUeJBAiX80 fs.aio-max-nr--> Async I/O max fs.file-max --> Max file open kernal.shmmin --> how many program segment can access(permission) the shared memory kernal.shmall --> maximum amount of shared memory can accessed by all the process other than OS(set to sum of all SGAs on the server divided by page size – ‘getconf PAGESIZE’) kernal.shmmax --> maximum amount of shared memory can accessed by ind...
Read more

Asm

#!/bin/bash # Set environment variables ORACLE_SID=YOUR_SID ORACLE_HOME=/path/to/oracle_home export ORACLE_SID ORACLE_HOME LOG_DIR=/path/to/logs SQL_DIR=/path/to/sql mkdir -p "$LOG_DIR" mkdir -p "$SQL_DIR" DB_USER="/ as sysdba" # Function to generate SQL data for each target type generate_sql() {   local TARGET_TYPE=$1   local SQL_FILE="$SQL_DIR/${TARGET_TYPE}_data.sql"   local OUTPUT_FILE="/tmp/${TARGET_TYPE}_data.txt"   case "$TARGET_TYPE" in     cluster)       echo "SET HEADING OFF; SET FEEDBACK OFF; SET PAGESIZE 0;" > "$SQL_FILE"       echo "SELECT TARGET_NAME || '|' || HOST_NAME || '|' || CREDENTIALS || '|' || CLUSTER_NAME || '|' || VIP_ADDRESS FROM CLUSTER_TARGETS;" >> "$SQL_FILE"       ;;     # Additional target types can be added here     *)       echo "[ERROR] Unknown target type: $TARGET_TYPE"       return 1       ;;   esac ...
Read more