You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It would be great if the wallet was created in $ORACLE_BASE/admin/[dbname]/ssl_wallet (for instance /u01/app/oracle/admin/orcl/ssl_wallet)
Over the years I've found that it is pretty easy for folks to get 'lost' between the various wallets and where they are. Every Oracle database ships with the xdb_wallet directory in the same spot, so I've been putting my wallets there with a separate directory for each:
/u01/app/oracle/admin/orcl/ssl_wallet
/u01/app/oracle/admin/orcl/tde_wallet
/u01/app/oracle/admin/orcl/opc_wallet
/u01/app/oracle/admin/orcl/xdb_wallet <-- Oracle puts this here.
Now, instead of a generic 'wallet' directory, you know what each wallet is for, and you'll reduce the chances of someone putting their TDE keys and the SSL certs into the same wallet (which, at least back in the 12.2 days) would work... until you bounced the instance, and then nothing would work.
Wallet Password
I'd much rather have the script prompt for a wallet password...
I'd love to be able to fork the project and make the above changes, but I'm unable to fork DOAG stuff. Or I could contribute here...
The text was updated successfully, but these errors were encountered:
For the password thing, yeah this is a good idea to pass in a parameter for the password, if not provided a password is generated...
Right now you could just create a _pwd.txt by your own inside of the wallet folder. The scripts checks if the file exists and uses the password from the text file...
Daniel,
Great project.
Some thoughts:
Wallet Location
It would be great if the wallet was created in $ORACLE_BASE/admin/[dbname]/ssl_wallet (for instance /u01/app/oracle/admin/orcl/ssl_wallet)
Over the years I've found that it is pretty easy for folks to get 'lost' between the various wallets and where they are. Every Oracle database ships with the xdb_wallet directory in the same spot, so I've been putting my wallets there with a separate directory for each:
/u01/app/oracle/admin/orcl/ssl_wallet
/u01/app/oracle/admin/orcl/tde_wallet
/u01/app/oracle/admin/orcl/opc_wallet
/u01/app/oracle/admin/orcl/xdb_wallet <-- Oracle puts this here.
Now, instead of a generic 'wallet' directory, you know what each wallet is for, and you'll reduce the chances of someone putting their TDE keys and the SSL certs into the same wallet (which, at least back in the 12.2 days) would work... until you bounced the instance, and then nothing would work.
Wallet Password
I'd much rather have the script prompt for a wallet password...
I'd love to be able to fork the project and make the above changes, but I'm unable to fork DOAG stuff. Or I could contribute here...
The text was updated successfully, but these errors were encountered: