要使用 LOCAL(本地)密钥库配置加密,请先设置主密码短语,然后创建密钥。有关加密属性的信息,请参见加密属性。
要配置 LOCAL(本地)密钥库加密,请设置主密码短语。
hostname:> shares encryption hostname:shares encryption> show Children: local => Manage LOCAL keystore okm => Register keys with Oracle Key Manager hostname:shares encryption> local hostname:shares encryption local> show Properties: master_passphrase = Children: keys => Manage this Keystore's Keys hostname:shares encryption local> set master_passphrase Enter new master_passphrase: Re-enter new master_passphrase: master_passphrase = (set) (uncommitted) b7420-16m:shares encryption local> commit b7420-16m:shares encryption local> show Properties: master_passphrase = (set) Children: keys => Manage this Keystore's Keys
要创建密钥,请输入密钥名称。keyname 属性的值是向池、项目或共享资源分配密钥时在 CLI 和 BUI 中使用的名称。
可以将 key 属性留空,系统将生成一个随机的密钥值;也可以输入一个十六进制编码的原始 256 位密钥值。在以下示例中,系统生成 key 值。
密钥使用步骤 1 中的主密码短语以加密格式存储。
hostname:shares encryption local> keys hostname:shares encryption local keys> show Keys: NAME CREATED CIPHER KEYNAME Properties: cipher = AES key = keyname = (unset) hostname:shares encryption local> create hostname:shares encryption local key-000 (uncommitted)> set keyname=Key-0 keyname = Key-0 (uncommitted) hostname:shares encryption local key-000 (uncommitted)> commit hostname:shares encryption local keys> show Keys: NAME CREATED CIPHER KEYNAME key-000 2019-7-1 18:43:33 AES Key-0 hostname:shares encryption local keys> select key-000 hostname:shares encryption local key-000> show Properties: cipher = AES key = ce968122d0bba26c3d66b6985ee358d18a786607f80eb4ebd834e4404fe8aa84 keyname = Key-0