In this article, we check about How to Configure Auto Login TDE Wallet.
When we configure the TDE wallet, we need to explicitly open it after each database restart.
ADMINISTER KEY MANAGEMENT SET KEYSTORE OPEN IDENTIFIED BY <wallet password> ;
we can verify the status of the wallet as
select wallet_type from v$encryption_wallet
wallet_type
-------------
Password
We can configure the auto-login wallet also, In that you don’t need to explicitly open the wallet., the database will automatically open it. It will open for all the PDBs in the CDB database
Command to do it
ADMINISTER KEY MANAGEMENT CREATE AUTO_LOGIN KEYSTORE FROM KEYSTORE '<wallet location>' IDENTIFIED BY <Wallet password>;
This will generate an extra file cwallet. sso in the wallet directory. Now if you query encryption_wallet view, it will still show the password
select wallet_type from v$encryption_wallet
wallet_type
-------------
Password
We can close the password wallet to open in Auto login mode
administer key management set keystore close identified by <wallet password> container=ALL;
Now if you see the status, it will show AUTOLOGIN
select wallet_type from v$encryption_wallet
wallet_type
-------------
AUTOLOGIN
The above can also be done by restarting the database and the Database will start using Autologin Wallet.
sqlplus / as sysdba
shutdown immediate
startup
Now we can verify the status of the wallet again as
select wallet_type from v$encryption_wallet wallet_type ------------- AUTOLOGIN
I hope you like this article on How to Configure Auto Login TDE Wallet
Related Articles
How To Restore TDE Wallet Files From Backup in Oracle Database
How to check if oracle database is encrypted
TDE encryption in Oracle 12c step by step
TDE encryption in oracle 11g step by step
How to check encrypted tablespace in the Database
https://docs.oracle.com/en/database/oracle/oracle-database/18/asoag/managing-keystore-and-tde-master-encryption-key.html