Yeah , we bounced node1 at lunch time and it picked up the correct
location. Not sure why the cluster autorestart of that node last night
failed to set the location correctly since the TNS_ADMIN variable is
configured in the srvctl settings for that db.
Chris
On Mon, Jul 20, 2020 at 2:28 PM Andy Klock <andy@xxxxxxxxxxxxxxx> wrote:
Hi Chris, are you sure the ENCRYPTION/WALLET_LOCATION is correct in
sqlnet.ora ? That's the first place it is supposed to check and if Oracle
can't find it there it will default to
$ORACLE_BASE/admin/<DB_UNIQUE_NAME>/wallet,
which looks like what is happening in your case.
Andy K
On Mon, Jul 20, 2020 at 10:18 AM Chris Taylor <
christopherdtaylor1994@xxxxxxxxx> wrote:
So we have a 4-Node 12.1.0.2 RAC on Linux (Exadata CC) where one node
doesn't have the wallet open. The wallet is on a shared filesystem.
Is there a command to open a specific wallet location in the DB?
I've checked TNS_ADMIN and its set correctly so that the sqlnet.ora file
should be read correctly :
srvctl getenv database -db <DB_NAME>
TNS_ADMIN=/u02/app/oracle/product/12.1.0/dbhome_2/network/admin/<db_name>
GV$ENCRYPTION_WALLET shows:
INST_ID WRL_TYPE WRL_PARAMETER STATUS WALLET_TYPE WALLET_ORDER
FULLY_BACKED_UP CON_ID
1 FILE /u02/app/oracle/admin/DB_NAME/wallet NOT_AVAILABLE UNKNOWN SINGLE
UNDEFINED 0
2 FILE /acfs01/dbaas_acfs/DB_NAME/TDE/ OPEN AUTOLOGIN SINGLE NO 0
3 FILE /acfs01/dbaas_acfs/DB_NAME/TDE/ OPEN AUTOLOGIN SINGLE NO 0
4 FILE /acfs01/dbaas_acfs/DB_NAME/TDE/ OPEN AUTOLOGIN SINGLE NO 0
If I attempt to do:
ADMINISTER KEY MANAGEMENT SET KEYSTORE OPEN IDENTIFIED BY "password" ;
It doesn't try to open the correct wallet, so is there a way to open the
keystore specified by a keystore location?
Chris
