| General Information |
| Purpose |
Hold encryption keys and certificates |
| Dependencies |
| GV$ENCRYPTION_WALLET |
GV$WALLET |
|
| Exceptions |
| Exception |
Description |
| ORA-28353 |
Wallet did not open |
| ORA-28368 |
Can not autocreate wallet |
|
| Create Wallet directory in operating system |
mkdir $ORACLE_BASE\admin\<SID>\wallet |
-- Note: This step is identical with the one performed with SECUREFILES.
If a wallet already exists skip this step.
host
mkdir $ORACLE_BASE\admin\orabase\wallet
exit |
| Alter SQLNET.ORA file |
-- Note: This step is identical with the one performed with SECUREFILES.
If a wallet already exists skip this step.
SQLNET.AUTHENTICATION_SERVICES = (NTS)
NAMES.DIRECTORY_PATH = (TNSNAMES, EZCONNECT)
ENCRYPTION_WALLET_LOCATION = (SOURCE = (METHOD=FILE) (METHOD_DATA = (DIRECTORY = c:\oracle\admin\orabase\wallet)))
-- Note: if you do not use this wallet location you will likely receive ORA-28368: cannot auto-create wallet when setting the key |
| Set Encryption Key |
conn uwclass/uwclass
ALTER SYSTEM SET ENCRYPTION KEY AUTHENTICATED BY "N0way!";
desc gv$encryption_wallet
col wrl_parameter format a40
SELECT * FROM gv$encryption_wallet; |
| Load the master encryption key following a restart |
ALTER SYSTEM SET [ENCRYPTION] WALLET OPEN IDENTIFIED BY <password>; |
desc gv$encryption_wallet
col wrl_parameter format a50
SELECT *
FROM gv$encryption_wallet;
ALTER SYSTEM SET ENCRYPTION WALLET OPEN IDENTIFIED BY "N0way!";
-- Failure to do so will result in: ORA-28365: wallet is not open
SELECT *
FROM gv$encryption_wallet; |
| Close the wallet |
ALTER SYSTEM SET WALLET CLOSE; |
| ALTER SYSTEM SET WALLET CLOSE; |
