Tuesday, January 31, 2017

Transparent Data Encryption in 11g

In this article I would discuss how to implement Transparent Data Encryption (TDE) in 11g. TDE is used to encrypt data at table/column level or tablespace level. This ensures that encrypted data is accessible only by using encryption key that is stored in either Wallet or Hardware Security Module.
For RAC setups, encryption key needs to be stored/copies on all the RAC nodes. In dataguard setup, encryption key should also be copied on dataguard sites.

Monday, January 23, 2017

ORA-28365: wallet is not open

This error means that you are trying to perform some operation in the database which requires encryption wallet to be open, but wallet is not open. In 11g, use following command to open the wallet. Provide password after “identified by” clause. In the following scenario, password is “welcome”.
alter system set encryption wallet open identified by "welcome1";