Home > Oracle > Oracle advanced security

Oracle advanced security

Create a wallet to store secret keys

The Oracle wallet is created using “owm” , orapki or mkstore. We use the orapki utility.

# orapki wallet create -wallet /oradiag/oradata/wallet -auto_login

Instruct Oracle where your wallet is located

Edit sqlnet.ora by adding the following parameters:

ENCRYPTION_WALLET_LOCATION =
(SOURCE =
(METHOD = FILE)
(METHOD_DATA =
(DIRECTORY = /oradiag/oradata/wallet)))

Save the file.

Create the master encryption key

Since this is the first time you setup the master key and we have created the wallet with orapki, open the wallet first:

ALTER SYSTEM SET ENCRYPTION WALLET OPEN IDENTIFIED BY “<wallet password>”;

Now set the key:

ALTER SYSTEM SET ENCRYPTION KEY IDENTIFIED BY “<wallet password>”;

You will now receive an ORA-error stating that the wallet is not open after setting the encryption key. Now, reopen the wallet:

ALTER SYSTEM SET ENCRYPTION WALLET OPEN IDENTIFIED BY “<wallet password>”;

Basically you’re done and can begin encrypting your data.

 

Advertisements
Categories: Oracle
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: