Posts

Showing posts from January, 2013

Configure TDE wallet on RAC

To configure Oracle TDE (Transparent Data Encryption) wallet on a RAC, you need to do a few things to ensure that each database has its own wallet independent of each other.  Here are the steps that I completed in order to configure this: 1.  Set the environment variable ORACLE_UNQNAME on the OS in the .bash_profile. (In my case, it was Linux as this was 11.2.0.3 RAC on Linux).  This env variable should be set to the database unique name (not instance name). Please note: this needs to be configured in a way in each time the environment is sourced (. oraenv), the ORACLE_UNQNAME env variable will also be re-sourced. export ORACLE_UNQNAME=`$ORACLE_HOME/bin/srvctl config database |grep -w ${ORACLE_SID%?}` 2. Set the environment variable also via srvctl. srvctl setenv database -d RAC-HR -T "ORACLE_UNQNAME=RAC-HR" 3.  Create wallet directory. mkdir /u01/app/oracle/admin/${ORACLE_UNQNAME}/wallet 4. Configure sqlnet.ora as follows (example): ENCRYPT