欢迎光临
我们一直在努力

Oracle 参数 EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION 官方解释,作用,如何配置最优化建议

本站中文解释

EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION参数是用来指定在操作系统中保存外部KeyStore凭证文件(Oracle Java Secure Socket Extension(JSSE)工作所需的证书和私钥信息)的路径。

正确设置本参数的方法是:

1. 在Oracle数据库层面上执行ALTER SYSTEM并设置EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION参数:

ALTER SYSTEM SET EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION = ”;

2. 通过SQL*Plus工具将值更新到数据字典中:

ALTER SYSTEM REGISTER;

3. 重启Oracle数据库服务器以应用设置:

SHUTDOWN IMMEDIATE

STARTUP

官方英文解释

EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION specifies the location of the secure external keystore.

Property Description

Parameter type

String

Syntax

EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION = file-location

Default value

No default value

Modifiable

No

Modifiable in a PDB

No

Basic

No

Oracle RAC

This parameter can be set on each instance. Oracle recommends that if the instances have a shared location, then use a directory on the shared location for this parameter and set the same value on all Oracle RAC instances. If the database does not have a shared location, then each instance of the database will have its own directory and the value should be set per-instance.

TDE keystore credentials can be stored in a secure external keystore to automate Transparent Data Encryption (TDE) operations.

To automate the setting of the Master Key in a newly-provisioned PDB, set EXTERNAL_KEYSTORE_CREDENTIAL_LOCATION so that the CDB knows the location of the secure external keystore.

When a file specification is set with this parameter, the secure external keystore is looked for in that location. If the secure external keystore is not found in that location, then this parameter is ignored.

See Also:

Oracle Database Advanced
Security Guide
for more information about using TDE

赞(0)
【声明】:本博客不参与任何交易,也非中介,仅记录个人感兴趣的主机测评结果和优惠活动,内容均不作直接、间接、法定、约定的保证。访问本博客请务必遵守有关互联网的相关法律、规定与规则。一旦您访问本博客,即表示您已经知晓并接受了此声明通告。