Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

back

Oracle Transparent Data Encryption (TDE)

Integrating TDE with CipherTrust Manager on Oracle 19c RAC

search

Integrating TDE with CipherTrust Manager on Oracle 19c RAC

This section explains how to integrate TDE with CipherTrust Manager on Oracle 19c RAC. This chapter covers the following topics:

Verifying Oracle RAC Installation

To verify the Oracle RAC Installation and configuration, refer to the Oracle Documentation.

To check the status of database instances on each node, execute the following command:

1
$ srvctl status database -d <db_name>

Output:

1
2
Instance ORCL1 is running on node orcl1
Instance ORCL2 is running on node orcl2

Ensure that database instances are up and running.

Configuring Manual HSM Wallet on Fresh Setup

To configure an HSM wallet on an Oracle RAC setup, refer Configuring Manual HSM Wallet‌.

Configuring Auto-login Wallet

  1. Perform the steps mentioned in the Configuring Auto-login Wallet‌ section.

  2. Copy the cwallet.sso file from the configured node to all other nodes at the same location.

  3. Restart the database.

  4. Access the data from the other node(s).

Migrating from Software Wallet to HSM Wallet

Perform the steps mentioned in the Migrating from Software Wallet to HSM Wallet section.

A key is created on the CipherTrust Manager. Fetch the data from the encrypted column or encrypted tablespace, using the following commands.

1
2
SELECT * FROM EMPLOYEES;
SELECT * FROM CUSTOMERS;

For other node(s), perform the same activity as mentioned above.

Migrating Manual Software Wallet to Auto-login HSM Wallet‌

  1. Perform the steps mentioned in the Migrating Manual Software Wallet to Auto-login HSM Wallet section.‌

  2. Copy the cwallet.sso file from the configured node to all other nodes at the same location.

  3. Restart and connect to the database instance.

  4. Access the data from the encrypted tablespace and tables.

    1
    2
    SELECT * FROM EMPLOYEES;
    SELECT * FROM CUSTOMERS;
    

Migrating Auto-login Software Wallet to Auto-login HSM Wallet‌

  1. Perform the steps mentioned in the Migrating Auto-login Software Wallet to Auto-login HSM Wallet section.

  2. Copy the cwallet.sso file from the configured node to all other nodes at the same location.

  3. Restart and connect to the database instance.

  4. Access the data from the encrypted tablespace and tables.

    1
    2
    SELECT * FROM EMPLOYEES;
    SELECT * FROM CUSTOMERS;