口令加密
3、网络传输加密不能使用
所以通常情况下还是需要自己生成密钥文件。生成密钥文件需要两个步骤:
具体操作如下:
[ggate@ogg_s current]$ ./keygen 128 3
0x345ceb2da213dc2f75b0514484fcab42
0xd8a1b350af392a75c52ee540b169b267
0x7ce77b73bd5f783a15ad783ddfd6b80c
# 将密钥存储到文件中,,一行一个密钥
[ggate@ogg_s current]$ cat enckeys
## key-name key-value
passwdkey 0x345ceb2da213dc2f75b0514484fcab42
trailkey 0xd8a1b350af392a75c52ee540b169b267
tcpipkey 0x7ce77b73bd5f783a15ad783ddfd6b80c
配置好密钥文件后,我们就可以对数据库账号的口令进行加密了。
ggsci (ogg_s) 1> encrypt password ogg123 encryptkey passwdkey
encrypted password: aadaaaaaaaaaaagasbqgiaygcfrcwelgfjmhbhhdohwdwgrbbckcyfsggjtejffjubqfkesgnavbrdtf
algorithm used: aes128
ggsci (ogg_s) 2> encrypt password ogg123 encryptkey default
using default key...
encrypted password: aacaaaaaaaaaaagacarardmendjhiifg
algorithm used: blowfish
ggsci (ogg_s) 3> dblogin userid ogg, password aadaaaaaaaaaaagasbqgiaygcfrcwelgfjmhbhhdohwdwgrbbckcyfsggjtejffjubqfkesgnavbrdtf, encryptkey passwdkey
successfully logged into database.
...
setenv (oracle_home=/u01/app/oracle/product/11.2.0/db_1)
setenv (oracle_sid=ggtest)
--userid ogg, password ogg123
userid ogg, password aadaaaaaaaaaaagasbqgiaygcfrcwelgfjmhbhhdohwdwgrbbckcyfsggjtejffjubqfkesgnavbrdtf, encryptkey passwdkey
exttrail /data/ggate/dirext/ggtest/ea
...
trail文件加密
如果是加过密的,那数据就是一团乱码了:
...
setenv (oracle_sid=ggtest)
userid ogg, password aadaaaaaaaaaaagasbqgiaygcfrcwelgfjmhbhhdohwdwgrbbckcyfsggjtejffjubqfkesgnavbrdtf, encryptkey passwdkey
encrypttrail aes128 keyname trailkey
exttrail /data/ggate/dirext/jet2/ea
discardfile /u01/app/oracle/product/ggate/current/dirrpt/ejet2.dsc, append, megabytes 500
fetchoptions fetchpkupdatecols
...
...
showsyntax
dynsql
dboptions deferrefconst
decrypttrail aes128 keyname trailkey
map jet2.*, target jet2.*;
...
...
decrypttrail aes128 keyname trailkey
rmthost ogg_t, mgrport 7809
encrypttrail aes128 keyname trailkey
rmttrail /data/ggate/dirrep/jet2/at
...
网络传输加密
...
userid ogg, password aadaaaaaaaaaaagasbqgiaygcfrcwelgfjmhbhhdohwdwgrbbckcyfsggjtejffjubqfkesgnavbrdtf, encryptkey passwdkey
rmthost ogg_t, mgrport 7809, encrypt aes128 keyname tcpipkey
rmttrail /data/ggate/dirrep/jet1/at
...
error ogg-01453 oracle goldengate capture for oracle, pjet1.prm: database login information not specified in parameter file.
goldengate更新丢失问题
goldengate单向表dml同步
oracle goldengate 系列:extract 进程的恢复原理
oracle goldengate安装配置
oracle goldengate的ogg-01004 ogg-1296错误
oracle goldengate快速入门教程:基本概念和配置
搭建一个oracle到oracle的goldengate双向复制环境
本文永久更新链接地址: