<<Back to Oracle DB Security Main Page
If you close the Keystore, a database user or application cannot perform any operation involving encrypted data until the keystore is reopened.
You can check the Keystore status using following query
SQL> select status from V$ENCRYPTION_WALLET;
Closing a Software AUTOLOGIN or LOCAL_AUTOLOGIN Keystore
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE;keystore altered.
Although the above query will close the AUTOLOGIN or LOCAL_AUTOLOGIN Keystore, you try to query V$ENCRYPTION_WALLET to check its status, You will see the wallet is open , because auto login wallet is open automatically as soon as you query V$ENCRYPTION_WALLET view
Closing a Software Password Based Keystore
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE IDENTIFIED BY xxxx CONTAINER = ALL;keystore altered.
OR
If you have configured external store for keystore password use below command
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE IDENTIFIED BY EXTERNAL STORE;
SYNTAX:ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE [IDENTIFIED BY [ EXTERNAL STORE | software_keystore_password]] [CONTAINER = ALL | CURRENT];
Comments
Post a Comment