Linux – Oracle 11g TDE wallet autologin

linuxoracleoracle-11g-r2transparent-data-encryption

I have setup Oracle TDE for my 11.2.0.4 database. I created the wallet. I created the autologin wallet and everything looked good.

{ORACLE_HOME}/bin/orapki wallet create -wallet cwallet.sso -auto_login -pwd password
Oracle PKI Tool : Version 11.2.0.4.0 - Production
Copyright (c) 2004, 2013, Oracle and/or its affiliates. All rights reserved.

The encryption wallet itself was open:

SQL> select STATUS  FROM V$ENCRYPTION_WALLET;

STATUS
------------------
OPEN

But after I restarted the database the wallet status showed closed and I had to manually open it. So my autologin did not work.

SQL> select STATUS  FROM V$ENCRYPTION_WALLET;

STATUS
------------------
CLOSED

Can anyone explain what could be the problem or what am I missing here? Thanks.

Best Answer

Without knowing what exactly you did, all I can say is it should work, but if you use Grid Infrastructure, you may need some additional configuration.

ORA-28365: wallet is not open when starting database with srvctl or crsctl when TDE is enabled (Doc ID 2711068.1)

One more thing, in the -wallet parameter we specify a directory usually, and not cwallet.sso, which will be generated automatically.

Below just works:

SQL> select * from v$encryption_wallet;

WRL_TYPE             WRL_PARAMETER                                      STATUS
-------------------- -------------------------------------------------- ------------------
file                 /u01/app/oracle/admin/$ORACLE_SID/wallet           CLOSED

SQL> !orapki wallet create -wallet /u01/app/oracle/admin/$ORACLE_SID/wallet -auto_login -pwd Oracle.123
Oracle PKI Tool : Version 11.2.0.4.0 - Production
Copyright (c) 2004, 2013, Oracle and/or its affiliates. All rights reserved.


SQL> select * from v$encryption_wallet;

WRL_TYPE             WRL_PARAMETER                                      STATUS
-------------------- -------------------------------------------------- ------------------
file                 /u01/app/oracle/admin/$ORACLE_SID/wallet           OPEN_NO_MASTER_KEY

SQL> shu immediate
Database closed.
Database dismounted.
ORACLE instance shut down.
SQL> startup
ORACLE instance started.

Total System Global Area 2137886720 bytes
Fixed Size                  2254952 bytes
Variable Size             536872856 bytes
Database Buffers         1593835520 bytes
Redo Buffers                4923392 bytes
Database mounted.
Database opened.
SQL> select * from v$encryption_wallet;

WRL_TYPE             WRL_PARAMETER                                      STATUS
-------------------- -------------------------------------------------- ------------------
file                 /u01/app/oracle/admin/$ORACLE_SID/wallet           OPEN_NO_MASTER_KEY

Related Solutions

Oracle connection suddenly refused on windows 8

Solved! The issue was LOCAL_LISTENER was not set to orcl. So

SQL> alter system register;

SQL> alter system set LOCAL_LISTENER='(ADDRESS = (PROTOCOL=TCP)(HOST=localhost)(PORT=1521))' scope=both;

did the trick!

Oracle 11g R2 – Full Client / Database Client Package Locations

When it comes to software downloads for production use, the Oracle sites, thankfully, are a little less of a maze - provided that you are familiar with the entrance.

You can find the latest media packs for production use on the Oracle Software Delivery Cloud.

After logging in and accepting terms and export restrictions, select Oracle Database and Linux x86-64. After hitting Go, you should be able to find Oracle Database 11g Release 2 (11.2.0) Media Pack for Linux x86-64 and within; the Oracle Database 11g Release 2 Client (11.2.0.1.0) for Linux x86-64.

You can find Oracle Database 12c Release 1 (12.1.0.2.0) Media Pack for Linux x86-64 and the associated Oracle Database 12c Release 1 Client (12.1.0.2.0) for Linux x86-64 (64-bit) in much the same way.

The patch from 11.2.0.1.0 to 11.2.0.2.0 should be downloaded from Metalink / My Oracle Support.

Starting with 11.2.0.2.0, any subsequent updates can be downloaded from with the installer itself, either as an integrated part of the installation process, or in advance (useful when destined server is restricted from accessing the Internet) by running the installer with the option -downloadUpdates.

I guess you have already considered just running the datapump tools from the actual Oracle home of the database in question?

These days, you may also be offered to try out a new and enhanced version of the software delivery cloud. Look for a big link on the landing page/login page.

On a final note, lots of additional information can be found in the Client Installation Guides available in the Oracle Database Online Documentation 11g Release 2 (11.2) or Oracle Database Online Documentation 12c Release 1 (12.1).

Best Answer

Related Solutions

Oracle connection suddenly refused on windows 8

Oracle 11g R2 – Full Client / Database Client Package Locations

Related Question