Professional Documents
Culture Documents
INSTANCE_NAME
----------------
DEV011
INST_ID WRL_TYPE
---------- --------------------
WRL_PARAMETER STATUS
----------------------------------------
------------------------------------
1 file
/opt/oracle/database/11.2.0.2/admin/DEV01/wallet CLOSED
2 file
/opt/oracle/database/11.2.0.2/admin/DEV01/wallet CLOSED
Status "CLOSED" because my database doesn't have any Wallet created yet
WRL_TYPE
-------------
WRL_PARAMETER STATUS
-----------------------------------
---------------------------
file
/opt/oracle/app/admin/DEV01/wallet CLOSED
ENCRYPTION_WALLET_LOCATION=(SOURCE=(METHOD=FILE)(METHOD_DATA=(DIRECTORY=/opt/
oracle/app/admin/DEV01/wallet/)))
NOTE: Create the directories on both nodes if they doesn't exists on the server
ex: mkdir -p /opt/oracle/app/admin/DEV01/wallet
copy sqlnet.ora file to other nodes into same locations (GRID and RDBMS homes)
INST_ID WRL_TYPE
---------- --------------------
WRL_PARAMETER STATUS
-----------------------------------
------------------------------------
1 file
/opt/oracle/database/11.2.0.2/admin/DEV01/wallet OPEN
2 file
/opt/oracle/database/11.2.0.2/admin/DEV01/wallet CLOSED
INST_ID WRL_TYPE
---------- --------------------
WRL_PARAMETER STATUS
-----------------------------------
------------------------------------
1 file
/opt/oracle/app/admin/DEV01/wallet/ CLOSED
2 file
/opt/oracle/app/admin/DEV01/wallet/ CLOSED
Observe, Oracle wallet location has been changed after database bounce
INST_ID WRL_TYPE
---------- --------------------
WRL_PARAMETER STATUS
-----------------------------------
------------------------------------
1 file
/opt/oracle/app/admin/DEV01/wallet/ OPEN
2 file
/opt/oracle/app/admin/DEV01/wallet/ OPEN
From GG_HOME directory, run prvtclkm.plb, and grant privilege to goldengate user
(missing this step may cause extract error: PLS-00201: identifier
'SYS.DBMS_INTERNAL_CLKM' must be declared)
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.2.0 - 64bit Production
With the Partitioning, Real Application Clusters, Automatic Storage Management,
OLAP,
Data Mining and Real Application Testing options
SQL>@prvtclkm.plb
Package created.
Library created.
SQL> exit
Disconnected from Oracle Database 11g Enterprise Edition Release 11.2.0.2.0 - 64bit
Production
With the Partitioning, Real Application Clusters, Automatic Storage Management,
OLAP,
Data Mining and Real Application Testing options
oracle@oracleDEV01.domain.com:/u01/NAS/GGATE INT$ cd
/opt/oracle/app/admin/DEV01/wallet
Now, create an entry for ORACLEGG in the wallet (this will ask you to create
sharedsecret password)
oracle@oracleDEV01.domain.com:/opt/oracle/app/admin/DEV01/wallet INT$ mkstore -
wrl . -createEntry ORACLE.SECURITY.CL.ENCRYPTION.ORACLEGG
Oracle Secret Store Tool : Version 11.2.0.2.0 - Production
Copyright (c) 2004, 2010, Oracle and/or its affiliates. All rights reserved.
Now we�ll see the new ORACLEGG entry in the wallet (only in node1), so to create
the entry in other nodes copy the wallet to other nodes
Here I�m doing SCP the wallet file from node1 to other nodes
$ scp * oracle@oracledev012.domain.com:/opt/oracle/app/admin/DEV01/wallet
After copying wallet file from node1 to node2 list and see for new encryption for
ORACLEGG entry from Node2 server
NOTE:
- close wallet from all the instances.
- re-open the wallet from all the instances.
Ex:
alter system set encryption wallet close identified by "xxxx"; (node1)
alter system set encryption wallet open identified by "xxxx"; (node1)
alter system switch logfile;
In the Extract parameter file, use the DBOPTIONS parameter with the DECRYPTPASSWORD
option
DBOPTIONS DECRYPTPASSWORD
AADAAAAAAAAAKAVAAIOFMFRHOFLEVHIIMIOJEJKFEGLAWIDFDHRFXFFJCEIELFXAJHCBJDHGJAIANI
AES128 &
ENCRYPTKEY WALLETENCR