<<Back to Oracle DB Security Main Page
Migrating Software Keystore from Automatic Storage Management
Step1> Create Empty KeystoreSQL> ADMINISTER KEY MANAGEMENT CREATE KEYSTORE '/u01/dbatst1/admin/wallet/TST1T' IDENTIFIED BY xxxx;
keystore altered.
Step2> Merge Keystore with Empty KeystoreSQL> ADMINISTER KEY MANAGEMENT MERGE KEYSTORE '+DG_TST_DATA/TST1T/wallet/' IDENTIFIED BY xxxx
INTO EXISTING KEYSTORE '/u01/dbatst1/admin/wallet/TST1T' IDENTIFIED BY xxxx
WITH BACKUP USING 'mig_keystore';
keystore altered.
Step3> Close the Keystore
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE;
keystore altered.
Step4> Modify the sqlnet.ora to point to the new keystore
Step5> Open the Keystore
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE OPEN identified by xxxx;
keystore altered.
SQL> select WRL_TYPE,WRL_PARAMETER,STATUS,WALLET_TYPE from v$encryption_wallet;
WRL_TYPE WRL_PARAMETER STATUS WALLET_TYPE
---------- -------------------------------------------------- ---------- --------------------
FILE /u01/dbatst1/admin/wallet/TST1T/ OPEN PASSWORD
Step6> Create Auto Login Keystore
SQL> ADMINISTER KEY MANAGEMENT CREATE AUTO_LOGIN KEYSTORE FROM KEYSTORE '/u01/dbatst1/admin/wallet/TST1T/' IDENTIFIED BY xxxx;
keystore altered.
Step7> Close Password Based KeyStore
SQL> ADMINISTER KEY MANAGEMENT SET KEYSTORE CLOSE identified by xxxx;
keystore altered.
SQL> select WRL_TYPE,WRL_PARAMETER,STATUS,WALLET_TYPE from v$encryption_wallet;
WRL_TYPE WRL_PARAMETER STATUS WALLET_TYPE
-------------------- -------------------------------------------------- ------------------------------ --------------------
FILE /u01/dbatst1/admin/wallet/TST1T/ OPEN AUTOLOGIN
Comments
Post a Comment