News

  1. Home
  2. All posts
All posts, ODA, Oracle by Team Ajara

Password reset in Transparent Database Encryption

Password reset for the wallet in Oracle Transparent Data Encryption (TDE)

Overview

Change keystore password in TDE using alter keystore password.

Transparent Data Encryption (TDE) already setup in one database, while registering the database in Oracle Database Appliance (ODA) got the error.

Error: 

Error: password should contain valid Special characters # _ –

Change keystore password in TDE using alter keystore password

Password reset in TDE

# odacli register-database -c OLTP -s odb1 -sn ORCLP01 -tp
Enter SYS, SYSTEM and PDB Admin user password:
Value provided for ‘SYS, SYSTEM and PDB Admin user password’ is not valid.
Error: password should contain valid Special characters # _ –
More info:
password length (minimum:9 maximum:30) characters
password should contain ALL of the following:
a) at least two uppercase letters
b) at least two lowercase letters
c) at least two numbers
d) at least two special characters, valid characters are # _ –

#

Reason for error

special characters are there in current password. While registering DB , getting password verification failed .
In the current password !(exclamation is there).

current password: PAsswd!#03

New password: NewPasswd_#12

Solution

Recreate password file

$orapwd file=orapwORCLP01

Enter password for SYS:

Rerun the register-database command

# odacli register-database -c OLTP -s odb1 -sn ORCLP01 -tp

Enter SYS, SYSTEM and PDB Admin user password:
Retype SYS, SYSTEM and PDB Admin user password:
Enter TDE wallet password:
Retype TDE wallet password:
pcs-10001: Internal error encountered: Unable to connect to the database.

#

Error:pcs-10001: Internal error encountered: Unable to connect to the database.

Reason for error

special characters are there in current password. While registering DB , getting password verification failed .
In the current password !(exclamation is there).

current password: PAsswd!#03

New password: NewPasswd_#12

Solution

Command Syntax

Administer key management alter keystore password force keystore identified by old_password set new_password with backup;

SQL> ADMINISTER KEY MANAGEMENT ALTER KEYSTORE PASSWORD FORCE KEYSTORE IDENTIFIED BY “PAsswd!#03” SET “NewPasswd_#12” WITH BACKUP;

keystore altered.

rerun the below command

# odacli register-database -c OLTP -s odb1 -sn ORCLP01 -tp

For complete register-database activity on ODA follow How to register database using odacli on ODA ?

 

See also