暂无图片
暂无图片
暂无图片
暂无图片
暂无图片

ORA-28417: 基于口令的密钥库未打开

原创 jieguo 2023-06-30
337

关闭密钥库报错:ORA-28417: 基于口令的密钥库未打开

[root@ora01 ~]# su - oracle
Last login: Thu Jun 29 16:23:57 CST 2023 on pts/2
[oracle@ora01 ~]$ sqlplus / as sysdba

SQL*Plus: Release 19.0.0.0.0 - Production on 星期五 6月 30 13:26:11 2023
Version 19.3.0.0.0

Copyright (c) 1982, 2019, Oracle.  All rights reserved.


连接到: 
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0

SQL> col WRL_PARAMETER for a32
SQL> col STATUS for a10
SQL> col KEYSTORE_MODE for a10
SQL> col WALLET_TYPE for a10
SQL> SELECT CON_ID,STATUS,KEYSTORE_MODE,WRL_PARAMETER,WALLET_TYPE FROM v$encryption_wallet;
SQL> col WRL_PARAMETER for a60
SQL> r
  1* SELECT CON_ID,STATUS,KEYSTORE_MODE,WRL_PARAMETER,WALLET_TYPE FROM v$encryption_wallet

    CON_ID STATUS     KEYSTORE_M WRL_PARAMETER                                                WALLET_TYP
---------- ---------- ---------- ------------------------------------------------------------ ----------
         1 NOT_AVAILA NONE       /u01/app/oracle/admin/jyc/wallet                             UNKNOWN
         2 NOT_AVAILA UNITED                                                                  UNKNOWN
         3 NOT_AVAILA UNITED                                                                  UNKNOWN

SQL> show pdbs;

    CON_ID CON_NAME                       OPEN MODE  RESTRICTED
---------- ------------------------------ ---------- ----------
         2 PDB$SEED                       READ ONLY  NO
         3 JYCDB                          READ WRITE NO
SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
ls: cannot access /u01/app/oracle/admin/jyc/wallet: No such file or directory

SQL> !mkdir -p /u01/app/oracle/admin/jyc/wallet

SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 0

SQL> show parameter wallet_root;

NAME                                 TYPE        VALUE
------------------------------------ ----------- ------------------------------
wallet_root                          string
SQL> show parameter tde_configuration;

NAME                                 TYPE        VALUE
------------------------------------ ----------- ------------------------------
tde_configuration                    string
SQL> 
SQL> ADMINISTER KEY MANAGEMENT CREATE KEYSTORE '/u01/app/oracle/admin/jyc/wallet' IDENTIFIED BY oracle1234;

密钥库已变更。

SQL> administer key management create auto_login keystore from keystore '/u01/app/oracle/admin/jyc/wallet' identified by oracle1234;

密钥库已变更。

SQL> select con_id, wallet_type, status from v$encryption_wallet;

    CON_ID WALLET_TYP STATUS
---------- ---------- ----------
         1 AUTOLOGIN  OPEN_NO_MA
         2 AUTOLOGIN  OPEN_NO_MA
         3 AUTOLOGIN  OPEN_NO_MA

SQL> col status for a30
SQL> r
  1* select con_id, wallet_type, status from v$encryption_wallet

    CON_ID WALLET_TYP STATUS
---------- ---------- ------------------------------
         1 AUTOLOGIN  OPEN_NO_MASTER_KEY
         2 AUTOLOGIN  OPEN_NO_MASTER_KEY
         3 AUTOLOGIN  OPEN_NO_MASTER_KEY

SQL> ADMINISTER KEY MANAGEMENT SET KEY IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL;
ADMINISTER KEY MANAGEMENT SET KEY IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> 
SQL> administer key management set keystore open force keystore identified by oracle1234 container=all;

密钥库已变更。

SQL> ADMINISTER KEY MANAGEMENT SET KEY IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL;
ADMINISTER KEY MANAGEMENT SET KEY IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> 
SQL> 
SQL> administer key management set key force keystore identified by oracle1234 with backup container=all;

密钥库已变更。

SQL> select con_id, wallet_type, status from v$encryption_wallet;

    CON_ID WALLET_TYP STATUS
---------- ---------- ------------------------------
         1 AUTOLOGIN  OPEN
         2 AUTOLOGIN  OPEN
         3 AUTOLOGIN  OPEN

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYP STATUS                         WRL_PARAMETER
---------- ---------- ---------- ------------------------------ ------------------------------------------------------------
         1          1 AUTOLOGIN  OPEN                           /u01/app/oracle/admin/jyc/wallet
         1          2 AUTOLOGIN  OPEN
         1          3 AUTOLOGIN  OPEN

SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 20
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL>                                      
SQL> 
SQL> administer key management set keystore close identified by oracle1234 container=all;
administer key management set keystore close identified by oracle1234 container=all
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> select con_id, wallet_type, status from v$encryption_wallet;

    CON_ID WALLET_TYP STATUS
---------- ---------- ------------------------------
         1 AUTOLOGIN  OPEN
         2 AUTOLOGIN  OPEN
         3 AUTOLOGIN  OPEN

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYP STATUS                         WRL_PARAMETER
---------- ---------- ---------- ------------------------------ ------------------------------------------------------------
         1          1 AUTOLOGIN  OPEN                           /u01/app/oracle/admin/jyc/wallet
         1          2 AUTOLOGIN  OPEN
         1          3 AUTOLOGIN  OPEN

SQL> administer key management set keystore open force keystore identified by oracle1234 container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYP STATUS                         WRL_PARAMETER
---------- ---------- ---------- ------------------------------ ------------------------------------------------------------
         1          1 AUTOLOGIN  OPEN                           /u01/app/oracle/admin/jyc/wallet
         1          2 AUTOLOGIN  OPEN
         1          3 AUTOLOGIN  OPEN

SQL> administer key management set keystore close identified by oracle1234 container=all;
administer key management set keystore close identified by oracle1234 container=all
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> show pdbs;

    CON_ID CON_NAME                       OPEN MODE  RESTRICTED
---------- ------------------------------ ---------- ----------
         2 PDB$SEED                       READ ONLY  NO
         3 JYCDB                          READ WRITE NO
SQL> alter session set container=jycdb;

会话已更改。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYP STATUS                         WRL_PARAMETER
---------- ---------- ---------- ------------------------------ ------------------------------------------------------------
         1          3 AUTOLOGIN  OPEN

SQL> ADMINISTER KEY MANAGEMENT SET KEY FORCE KEYSTORE IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL;
ADMINISTER KEY MANAGEMENT SET KEY FORCE KEYSTORE IDENTIFIED BY oracle1234 WITH BACKUP CONTAINER=ALL
*
第 1 行出现错误:
ORA-65040: 不允许从插接式数据库内部执行该操作



SQL> select name from v$datafile;

NAME
----------------------------------------------------------------------------------------------------------------------------------------------------------------
/u01/app/oracle/oradata/JYC/jycdb/system01.dbf
/u01/app/oracle/oradata/JYC/jycdb/sysaux01.dbf
/u01/app/oracle/oradata/JYC/jycdb/undotbs01.dbf
/u01/app/oracle/oradata/JYC/jycdb/users01.dbf

SQL> create tablespace jm128 datafile '/u01/app/oracle/oradata/JYC/jycdb/jm128.dbf' size 10m encryption using 'aes128' encrypt;

表空间已创建。

SQL> create user test identified by test default tablespace jm128;

用户已创建。

SQL> grant dba to test;

授权成功。

SQL> exit
从 Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0 断开
[oracle@ora01 ~]$ sqlplus test/test@jycdb

SQL*Plus: Release 19.0.0.0.0 - Production on 星期五 6月 30 13:48:38 2023
Version 19.3.0.0.0

Copyright (c) 1982, 2019, Oracle.  All rights reserved.


连接到: 
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0

SQL> create table t (id int);

表已创建。

SQL> insert into t values(1);

已创建 1 行。

SQL> commit;

提交完成。

SQL> select * from t;

        ID
----------
         1

SQL> exit
从 Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0 断开
[oracle@ora01 ~]$ strings /u01/app/oracle/oradata/JYC/jycdb/jm128.dbf|tail -40|more
}|{z
JM128
~7C!
[oracle@ora01 ~]$ strings /u01/app/oracle/oradata/JYC/jycdb/users01.dbf|tail -40|more
$UBl
01%.
01%.
aaa,
aaa,
aaa,
        (       |
'#-RJ
28IL
=,Gb
"QJN
DRb^
%;CD
&8G(5
YS3N
(cP6
*A@.
')V*
;       ^a
*IWH\
D"DO
)R      LZ
BY85
\451
"\/d0
_@6d
$[EJ9
        M       @d
$Y8UH
 +2S7
        1HU
FDRW
3XL
9@Xc
ZG&)
ccc<
abc<
AAAAAAAA
 Rw!
!Rw#
[oracle@ora01 ~]$ sqlplus / as sysdba

SQL*Plus: Release 19.0.0.0.0 - Production on 星期五 6月 30 13:50:48 2023
Version 19.3.0.0.0

Copyright (c) 1982, 2019, Oracle.  All rights reserved.


连接到: 
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> select tablespace_name, encrypted from dba_tablespaces;

TABLESPACE_NAME                ENC
------------------------------ ---
SYSTEM                         NO
SYSAUX                         NO
UNDOTBS1                       NO
TEMP                           NO
USERS                          NO

SQL> show pdbs;    

    CON_ID CON_NAME                       OPEN MODE  RESTRICTED
---------- ------------------------------ ---------- ----------
         2 PDB$SEED                       READ ONLY  NO
         3 JYCDB                          READ WRITE NO
SQL> alter session set container=jycdb;

会话已更改。

SQL> select tablespace_name, encrypted from dba_tablespaces;

TABLESPACE_NAME                ENC
------------------------------ ---
SYSTEM                         NO
SYSAUX                         NO
UNDOTBS1                       NO
TEMP                           NO
USERS                          NO
JM128                          YES

已选择 6 行。

SQL> create tablespace jm256 datafile '/u01/app/oracle/oradata/JYC/jycdb/tbsaes256.dbf' size 10m encryption using 'aes256' encrypt;

表空间已创建。

SQL> select tablespace_name, encrypted from dba_tablespaces;

TABLESPACE_NAME                ENC
------------------------------ ---
SYSTEM                         NO
SYSAUX                         NO
UNDOTBS1                       NO
TEMP                           NO
USERS                          NO
JM128                          YES
JM256                          YES

已选择 7 行。

SQL> exit
从 Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0 断开
[oracle@ora01 ~]$ sqlplus / as sysdba

SQL*Plus: Release 19.0.0.0.0 - Production on 星期五 6月 30 13:56:18 2023
Version 19.3.0.0.0

Copyright (c) 1982, 2019, Oracle.  All rights reserved.


连接到: 
Oracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production
Version 19.3.0.0.0

SQL> shutdown immediate
数据库已经关闭。
已经卸载数据库。
ORACLE 例程已经关闭。
SQL> startup
ORACLE 例程已经启动。

Total System Global Area 3154115088 bytes
Fixed Size                  9140752 bytes
Variable Size             889192448 bytes
Database Buffers         2248146944 bytes
Redo Buffers                7634944 bytes
数据库装载完毕。
数据库已经打开。
SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> administer key management set keystore close identified by oracle1234 container=all;
administer key management set keystore close identified by oracle1234 container=all
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> !ll /u01/app/oracle/admin/jyc/wallet
/bin/bash: ll: command not found

SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 20
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL> !mv /u01/app/oracle/admin/jyc/wallet/cwallet.sso /u01/app/oracle/admin/jyc/wallet/cwallet.sso.bak

SQL>  !ls -l /u01/app/oracle/admin/jyc/wallet
total 20
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso.bak
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL> administer key management set keystore close identified by oracle1234 container=all;
administer key management set keystore close identified by oracle1234 container=all
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 UNKNOWN              CLOSED
/u01/app/oracle/admin/jyc/wallet

         1          2 UNKNOWN              CLOSED


         1          3 UNKNOWN              CLOSED



SQL> administer key management set keystore open identified by oracle1234 container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 PASSWORD             OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 PASSWORD             OPEN


         1          3 PASSWORD             OPEN



SQL> administer key management create auto_login keystore from keystore identified by oracle1234 container=all;
administer key management create auto_login keystore from keystore identified by oracle1234 container=all
                                                                   *
第 1 行出现错误:
ORA-46604: 密钥库文件名无效或缺少密钥库文件名


SQL> administer key management create auto_login keystore from keystore identified by oracle1234;
administer key management create auto_login keystore from keystore identified by oracle1234
                                                                   *
第 1 行出现错误:
ORA-46604: 密钥库文件名无效或缺少密钥库文件名


SQL> 
SQL> 
SQL> administer key management create auto_login keystore from keystore '/u01/app/oracle/admin/jyc/wallet' identified by oracle1234;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 PASSWORD             OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 PASSWORD             OPEN


         1          3 PASSWORD             OPEN



SQL>                                                                                                                                              
SQL> 
SQL> administer key management set keystore close identified by oracle1234 container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> select con_id, wallet_type, status from v$encryption_wallet order by 1,2;

    CON_ID WALLET_TYPE          STATUS
---------- -------------------- ------------------------------
         1 AUTOLOGIN            OPEN
         2 AUTOLOGIN            OPEN
         3 AUTOLOGIN            OPEN

SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 28
-rw------- 1 oracle oinstall 5512 Jun 30 14:04 cwallet.sso
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso.bak
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL> administer key management set keystore close identified by oracle1234 container=all;
administer key management set keystore close identified by oracle1234 container=all
*
第 1 行出现错误:
ORA-28417: 基于口令的密钥库未打开


SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 28
-rw------- 1 oracle oinstall 5512 Jun 30 14:04 cwallet.sso
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso.bak
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL> !mv !mv /u01/app/oracle/admin/jyc/wallet/cwallet.sso /u01/app/oracle/admin/jyc/wallet/cwallet.sso.backup
mv: target ‘/u01/app/oracle/admin/jyc/wallet/cwallet.sso.backup’ is not a directory

SQL> !mv /u01/app/oracle/admin/jyc/wallet/cwallet.sso /u01/app/oracle/admin/jyc/wallet/cwallet.sso.backup

SQL> !ls -l /u01/app/oracle/admin/jyc/wallet
total 28
-rw------- 1 oracle oinstall 5512 Jun 30 14:04 cwallet.sso.backup
-rw------- 1 oracle oinstall 5512 Jun 30 13:35 cwallet.sso.bak
-rw------- 1 oracle oinstall 2555 Jun 30 13:35 ewallet_2023063005350398.p12
-rw------- 1 oracle oinstall 5467 Jun 30 13:35 ewallet.p12

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 UNKNOWN              CLOSED
/u01/app/oracle/admin/jyc/wallet

         1          2 UNKNOWN              CLOSED


         1          3 UNKNOWN              CLOSED



SQL> administer key management create auto_login keystore from keystore '/u01/app/oracle/admin/jyc/wallet' identified by oracle1234;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> 
SQL> create tablespace jm2561 datafile '/u01/app/oracle/oradata/JYC/jycdb/tbsaes2561.dbf' size 10m encryption using 'aes256' encrypt;

表空间已创建。

SQL>  select tablespace_name, encrypted from dba_tablespaces;

TABLESPACE_NAME                ENC
------------------------------ ---
SYSTEM                         NO
SYSAUX                         NO
UNDOTBS1                       NO
TEMP                           NO
USERS                          NO
JM2561                         YES

已选择 6 行。

SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> !mv /u01/app/oracle/admin/jyc/wallet/cwallet.sso /u01/app/oracle/admin/jyc/wallet/cwallet.sso.backup1

SQL> administer key management set keystore close container=all;

密钥库已变更。

SQL> select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 UNKNOWN              CLOSED
/u01/app/oracle/admin/jyc/wallet

         1          2 UNKNOWN              CLOSED


         1          3 UNKNOWN              CLOSED



SQL> create tablespace jm2562 datafile '/u01/app/oracle/oradata/JYC/jycdb/tbsaes2562.dbf' size 10m encryption using 'aes256' encrypt;
create tablespace jm2562 datafile '/u01/app/oracle/oradata/JYC/jycdb/tbsaes2562.dbf' size 10m encryption using 'aes256' encrypt
*
第 1 行出现错误:
ORA-28365: Wallet 未打开


SQL> administer key management create auto_login keystore from keystore '/u01/app/oracle/admin/jyc/wallet' identified by oracle1234;

密钥库已变更。

SQL>  select inst_id, con_id, wallet_type, status, wrl_parameter from gv$encryption_wallet order by 1,2;

   INST_ID     CON_ID WALLET_TYPE          STATUS
---------- ---------- -------------------- ------------------------------
WRL_PARAMETER
--------------------------------------------------------------------------------
         1          1 AUTOLOGIN            OPEN
/u01/app/oracle/admin/jyc/wallet

         1          2 AUTOLOGIN            OPEN


         1          3 AUTOLOGIN            OPEN



SQL> create tablespace jm2562 datafile '/u01/app/oracle/oradata/JYC/jycdb/tbsaes2562.dbf' size 10m encryption using 'aes256' encrypt;

表空间已创建。

复制

安装参考:
https://www.alex-sanz.com/2021/10/19/oracle-19c-how-oracle-enable-tde-on-rac-db/
https://www.modb.pro/db/66205
相关参考:
https://logic.edchen.org/how-to-disable-auto-login-keystore/–mv sso才行。
https://logic.edchen.org/how-to-resolve-ora-28417-password-based-keystore-is-not-open/

「喜欢这篇文章,您的关注和赞赏是给作者最好的鼓励」
关注作者
【版权声明】本文为墨天轮用户原创内容,转载时必须标注文章的来源(墨天轮),文章链接,文章作者等基本信息,否则作者和墨天轮有权追究责任。如果您发现墨天轮中有涉嫌抄袭或者侵权的内容,欢迎发送邮件至:contact@modb.pro进行举报,并提供相关证据,一经查实,墨天轮将立刻删除相关内容。

评论