要使用 OKM 配置加密,请先设置密钥管理器服务器信息,然后创建密钥。有关加密属性的信息,请参见加密属性。
要配置 OKM 密钥库加密,请设置代理 ID、注册 PIN(由您的 OKM 安全官提供)和服务器 IP 地址。
hostname:> shares encryption hostname:shares encryption> show Children: local => Manage LOCAL keystore okm => Register keys with Oracle Key Manager hostname:shares encryption> okm hostname:shares encryption okm> show Properties: agent_id = ExternalClient041 registration_pin = (set) server_addr = 10.80.180.109 Children: keys => Manage this Keystore's Keys
要创建密钥,请输入密钥名称。
hostname:shares encryption okm keys> create hostname:shares encryption okm key-372 (uncommitted)> ls Properties: cipher = AES keyname = (unset) hostname:shares encryption okm key-372 (uncommitted)> set keyname=anykey keyname = anykey (uncommitted) hostname:shares encryption okm key-372 (uncommitted)> commit