ITPub博客

首页 > IT基础架构 > 网络安全 > Vault--How to reset wallet pwd at Audit Vault Agent server

Vault--How to reset wallet pwd at Audit Vault Agent server

原创 网络安全 作者:vongates 时间:2019-07-13 13:33:05 0 删除 编辑

现在oracle推数据安全的产品是比较多了,2006年的database vault,在2007年oracle三十岁之际又推出了Audit Vault,最近抽空来配置一个实验的环境。在Ageng端配置source DB时途因为不记得在安装Audit Vault Agent时候的密码了,只能重设wallet的密码下面给出一个简单的步骤:

[@more@]

1. Delete files from $AGENT_ORACLE_HOME/network/admin/avwallet [cwallet.sso & ewallet.p12]
2. Run : avca create_wallet -wrl $AGENT_ORACLE_HOME/network/admin/avwallet -wpwd
==>avca create_wallet -wrl $ORACLE_HOME/network/admin/avwallet -wpwd p2ssw0rd
3. Run : avca create_credential -wrl $AGENT_ORACLE_HOME/network/admin/avwallet -wpwd -usr / -dbalias av
==>avca create_credential -wrl $ORACLE_HOME/network/admin/avwallet -wpwd p2ssw0rd -usr avagent/Monday -dbalias av

For example:

$ avorcldb setup -srcname AV.VONGATES.COM -srcusr avcolluser/avcolluser -wpwd p2ssw0rd
updated tnsnames.ora with alias [SRCDB1] to source database
adding credentials for user avcolluser for connection [SRCDB1]
Storing user credentials in wallet...
AVCA_ERROR: Could not open wallet. Check password
Error executing task create_credential: Could not open wallet. Check password
ERROR: java.io.IOException: Could not open wallet. Check password
$ cd $ORACLE_HOME
$ cd network/admin/avwallet/
$ lltotal 64
-rw-r----- 1 oracle dba 8308 Jan 28 15:36 cwallet.sso
-rw------- 1 oracle dba 8280 Jan 28 15:36 ewallet.p12
$ mv cwallet.sso cwallet.sso.bak
$ mv ewallet.p12 ewallet.p12.bak
$ lltotal 96
-rw-r----- 1 oracle dba 8308 Jan 29 13:16 cwallet.sso.bak
-rw------- 1 oracle dba 8280 Jan 28 15:36 ewallet.p12.bak
$ avca --------------------------------------------
AVCA Usage
--------------------------------------------
Oracle Audit Vault Server Installation commands
avca secure_av -avkeystore -avkeystorepwd -avtruststore
avca secure_av -remove

Oracle Audit Vault Configuration commands - Agent:
avca add_agent -agentname [-agentdesc ] -agenthost -agentusr
avca alter_agent -agentname [-newagentname ] [-agentdesc ] [-agenthost ] [-agentport ] [-agentusr /]
avca drop_agent -agentname

Oracle Audit Vault Configuration commands - Warehouse:
avca set_warehouse_schedule -schedulename
avca set_warehouse_schedule -startdate -rptintrv [-dateformat ]
avca set_warehouse_retention -intrv

Oracle Audit Vault Agent Installation commands
avca secure_agent -agentkeystore -agentkeystorepwd -avdn -agentdn
avca secure_agent -remove

Oracle Audit Vault Configuration commands - Authentication:
avca create_wallet -wrl -wpwd
avca create_credential -wrl -wpwd -dbalias -usr /


avca -help

$ avca create_wallet -wrl $ORACLE_HOME/network/admin/avwallet -wpwd p2ssw0rd
AVCA started
Creating wallet...
Wallet created successfully.
$ avca create_credential -wrl $ORACLE_HOME/network/admin/avwallet -wpwd p2ssw0rd -usr avagent/Monday -dbalias av
AVCA started
Storing user credentials in wallet...
Create credential oracle.security.client.connect_string1
done.
$ ll
total 128
-rw-r----- 1 oracle dba 8308 Jan 29 13:22 cwallet.sso
-rw-r----- 1 oracle dba 8308 Jan 29 13:16 cwallet.sso.bak
-rw------- 1 oracle dba 8280 Jan 29 13:22 ewallet.p12
-rw------- 1 oracle dba 8280 Jan 28 15:36 ewallet.p12.bak
$ avorcldb setup -srcname AV.VONGATES.COM -srcusr avcolluser/avcolluser -wpwd p2ssw0rd
updated tnsnames.ora with alias [SRCDB1] to source database
adding credentials for user avcolluser for connection [SRCDB1]
Storing user credentials in wallet...
Create credential oracle.security.client.connect_string2
done.
verifying SRCDB1 connection using wallet
$

来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/29987/viewspace-998683/,如需转载,请注明出处,否则将追究法律责任。

请登录后发表评论 登录
全部评论

注册时间:2018-09-11

  • 博文量
    449
  • 访问量
    292660