On Oracle Wallet

Oracle Wallet Preliminary study

1.  What isWallet

A Datastructure used to store and manage security credentials for A individualentity.

from Oracle10gr2 starts by using Oracle Wallet to log in to the database without using a password ( non-operating system authentication method , which is very useful for logging in to a database, especially for enterprise security requirements, do not want the user name and password plaintext in the configuration file, and for password maintenance is very convenient, such as I put wallet Placed under the specified path, when changing the password, only need to uniformly overwrite the wallet, for a large number of application servers is particularly convenient.

2.  Walletthe creation and management1.CreateWallet

[Email protected] ~]$ Mkdir-p/tmp/test_wallet

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet–create

[Email protected] ~]$ cd/tmp/test_wallet/

[[email protected] test_wallet]$ ls

Cwallet.sso EWALLET.P12

Configuring the connection string Tnsnames.ora

wallet_ocp11g =

(DESCRIPTION =

(ADDRESS = (PROTOCOL = TCP) (HOST = daidai.com) (PORT = 1522))

(Connect_data =

(SERVER = dedicated)

(service_name = ocp11g)

)

)

Configure Sqlnet.ora

Wallet_location= (Source= (Method=file) (Method_data= (Directory=/tmp/test_wallet)))

Sqlnet. Wallet_override = TRUE

Add user authentication information for login database to wallet in

[Email protected] ~]$ Mkstore--help

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

No Wallet location specified.

Mkstore [-WRL WRL] [-create] [-createsso][-createlsso] [-createalo] [-delete] [-deletesso] [-list] [-createentry Aliassecret] [-viewentry alias] [-modifyentry alias secret] [-deleteentry alias] [-createcredential connect_string Username password][-listcredential] [-modifycredential connect_string username password][-deletecredential Connect_string] [-help] [-nologo]

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-createcredential wallet_ocp11g daidai love8013

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet Password:l 3

Create Credential oracle.security.client.connect_string1

Test connection

at this point, you can use the wallet connection

[Email protected] ~]$ sqlplus/@wallet_ocp11g

Sql*plus:release 11.2.0.4.0 Production ontue June 14 14:47:49 2016

Copyright (c) 1982, Oracle. All rights reserved.

Connected to:

Oracle Database 11g Enterprise editionrelease 11.2.0.4.0-64bit Production

With the partitioning, OLAP, Data miningand Real Application Testing Options

Sql>

2.ManagementWallet

Management Wallet also applies to Mkstore commands

View Credential

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-listcredential

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet password:love801 3

List Credential (Index:connect_stringusername)

1:wallet_ocp11g Daidai

Modify wallet user Password in

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-modifycredential wallet_ocp11g daidai love8014

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet PASSWORD:LOVE80

Modify credential

Modify 1

[Email protected] ~]$ Sqlplus @/wallet_ocp11g

Sql*plus:release 11.2.0.4.0 Production ontue June 14 14:58:35 2016

Copyright (c) 1982, Oracle. All rights reserved.

Sp2-0310:unable to OpenFile "/wallet_ocp11g.sql"

Enter User-name:daidai

Enter password:-- Enter the correct password here, the wrong password will not enter

Delete wallet The user authentication information

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-listcredential

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet Password:lov E8

List Credential (Index:connect_stringusername)

1:wallet_ocp11g Daidai

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-deletecredential wallet_ocp11g

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet password:ove801 3

Delete credential

Delete 1

View wallet Detailed certification Information

[Email protected] ~]$ mkstore-wrl/tmp/test_wallet-list

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet PASSWORD:L E8 013

Oracle Secret Store Entries:

Oracle.security.client.connect_string1

Oracle.security.client.password1

Oracle.security.client.username1

[Email protected] ~]$mkstore-wrl/tmp/test_wallet-viewentry oracle.security.client.connect_string1

Oracle Secret Store tool:version11.2.0.4.0-production

Copyright (c) 2004, Oracle and/or Itsaffiliates. All rights reserved.

Enter Wallet Password:lo Ve8

Oracle.security.client.connect_string1 =wallet_ocp11g

Change wallet content of user authentication information

MKSTORE-WRL /tmp/test_wallet -modifyentry oracle.security.client.password1skatepwd1

MKSTORE-WRL /tmp/test_wallet -modifyentry oracle.security.client.username1skate1

3.  MigrationLinux WallettoWindow 7

1. follow the styles in Linux to modify Tnsname.ora[ip & Port] and Sqlnet.ora[walletpath], and be aware of test connectivity

2. MKSTORE-WRL e:/test_wallet–create

3. Copy the wallet file from Linux to overwrite the wallet file in windows

650) this.width=650; "Width=" 554 "height=" "src=" "/e/u261/themes/default/images/spacer.gif" style= "Background:url" ("/e/u261/lang/zh-cn/images/localimage.png") no-repeat center;border:1px solid #ddd; "alt=" Spacer.gif "/>

Windows migrated to Linuxand I didn't test it.

This article is from the "90SirDB" blog, be sure to keep this source http://90sirdb.blog.51cto.com/8713279/1789136

On Oracle Wallet