如何配置 OKM 密钥库加密 (CLI)

要使用 Oracle Key Manager (OKM) 密钥库，请配置以下参数：

• agent_id

• registration_pin（由 OKM 安全官提供）

• server_addr

有关加密属性的信息，请参见Encryption Properties。

1. 要配置 OKM 密钥库加密，请使用以下 CLI 命令：

   hostname:> shares encryption
   hostname:shares encryption> show
   Children:
                                okm => Manage encryption keys
                              local => Manage encryption keys
   
   hostname:shares encryption> okm
   hostname:shares encryption okm> show
   Properties:
                        agent_id = ExternalClient041
                registration_pin = *********
                     server_addr = 10.80.180.109
   
   Children:
                               keys => Manage this Keystore's Keys
   

2. 要创建 OKM 密钥，请使用以下 CLI 命令：

   hostname:shares (pool-290-A) encryption okm keys>
   hostname:shares (pool-290-A) encryption okm keys> create
   hostname:shares (pool-290-A) encryption okm key-372 (uncommitted)> ls
   Properties:
                          cipher = AES
                         keyname = (unset)
   hostname:shares (pool-290-A) encryption okm key-372 (uncommitted)> set
   keyname=anykey
                         keyname = anykey (uncommitted)
   hostname:shares (pool-290-A) encryption okm key-372 (uncommitted)> commit 
   

相关主题

• How to Configure LOCAL Keystore Encryption (CLI)

• How to Configure OKM Keystore Encryption (BUI)

• How to Create an Encrypted Project (CLI)