Database Administration (MOSC)

MOSC Banner

Reset of the master encryption key of the database.

edited Apr 29, 2020 8:10PM in Database Administration (MOSC) 6 comments

Database version - 18.8.1.0.0

TDE is enabled, Wallet is in ASM, auto-login is created.Only tablespace encryption is enabled at the moment.

Backup of the encryption keys  (ewallet.p12 & cwallet.sso) is taken on another filesystem which have a regular backup.

Reset of the master encryption key of the database.

ADMINISTER KEY MANAGEMENT ALTER KEYSTORE PASSWORD FORCE KEYSTORE IDENTIFIED BY "xxxxxxxxxxxxxxxxxxxxx" SET "yyyyyyyyyyyyyyyyyyyyy" WITH BACKUP USING 'NEWKEY_REF';

The command is executed successfully, but the new key is not visible in V$ENCRYPTION_KEYS or in V$DATABASE_KEY_INFO. The activation_time of the key is same as the creation_time of the existing key. There is also no change in the activation_time.

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center