Configuring a Password-Protected Wallet for Storing Login Credentials
Before You Begin
This tutorial walks you through the steps needed to configure password protected wallet for storing login credentials.
This tutorial takes approximately 15 minutes to complete.
Background
Prior to logging into Oracle Data Integrator Studio for the first time, you must create a login name for which you specify your Oracle Data Integrator login credentials. These credentials include your Oracle Data Integrator user name and password, and also the Oracle Data Integrator master repository database user name and password. Oracle Data Integrator can save these credentials in either an encrypted login XML file or a password-protected wallet. By default, they are saved in a password-protected wallet.
The use of password-protected wallets for storing database login credentials is strongly recommended by Oracle. To generate password-protected wallets, Oracle Data Integrator leverages the Oracle Wallet features in Oracle Platform Security Services (OPSS). Password-protected wallets use a strong encryption algorithm to secure the wallet's contents.
Note the following about using the password-protected wallet in Oracle Data Integrator Studio:
- When you create the wallet, you specify the wallet password and the days until the password expires. Oracle Data Integrator then stores the repository login credentials in the wallet.
- When you connect to an Oracle Data Integrator repository, you need only to enter the wallet password. All repository login credentials are then automatically retrieved from the wallet.
- The wallet file is named ewallet.p12 and is placed in the following directory:
Windows:
%APPDATA%\odi\oracledi\ewalletUNIX:
$HOME/.odi/oracledi/ewalletNote: Depending on your environment, you might first need to create the root directory for the wallet. For more information, see Creating the Password-Protected Wallet section.
- When the wallet password expires, Oracle Data Integrator Studio automatically prompts you to enter a new one when you attempt to login to Studio.
- You can change the wallet password and expiration at any time from Studio.
The following sections explain how to create and use the password-protected wallet for storing Oracle Data Integrator login credentials:
Creating the Password-Protected Wallet
When logging in to Studio for the first time, you can create the password-protected wallet using the following steps:
- Navigate to
ORACLE_HOME/odi/studiodirectory. - Launch Oracle Data Integrator Studio by running the following command:
Windows:
odi.exeUNIX:
./odi.shThe Studio main window is displayed.
- Click Connect to Repository. The New Wallet Password dialog box appears.
- In the New Wallet Password Dialog Box, Choose the default option, Store passwords in a secure wallet, then enter the password in the Wallet Password and Confirm Wallet Password fields.
Optionally, you can change the password expiration. - Click OK.
You are then prompted to enter login credentials for the master repository. For more information about the required credentials, see Creating the Master Repository.
Subsequently, each time you log in to Studio and connect to a repository, you are prompted for the wallet password.
Permitting Repository Access to Other Users
To give Oracle Data Integrator users access to the repository, you can distribute the password-protected wallet to them in either of the following ways:
- Provide each user with a copy of the ewallet.p12 file you created, along with the password you specified.
- Create an individual password-protected wallet for each Oracle Data Integrator user. This allows you to set a different password for each wallet.
When creating a wallet for other users, be sure to do the following:
- Prior to creating a new wallet, move the existing ewallet.p12 file to a different directory.
- When creating a wallet for other users, set the expiration to 0 days. This way, when users connect to the repository for the first time, they are prompted to set a new password for their wallets (For more details, see the next section Changing the Wallet Password).
All password-protected wallet files for Oracle Data Integrator Studio must be named ewallet.p12 and must be placed in the ~oracledi/ewallet directory on each machine from which it is used, as explained in Creating the Password-Protected Wallet section.
Changing the Wallet Password
When the wallet password expires, you are automatically prompted to enter a new one when you try to connect to a repository. However, you can also change the wallet password from Studio at any time, as follows:
- Launch Oracle Data Integrator Studio.
- From the ODI menu, choose Change Wallet Password. The Change Wallet Password Dialog Box appears.
- In the Change Wallet Password Dialog Box, enter the current password and the new password, then confirm your new password. Optionally, you can also change the expiration.
- Click OK.
Customizing How Login Credentials Are Saved
Oracle Data Integrator Studio provides the following options for storing login credentials:
- You can enable or disable the saving of login credentials.
- If login credentials are being saved, you can choose between saving them in a password-protected wallet or a login XML file.
To change whether or how login credentials are saved, complete the following steps:
- Launch Oracle Data Integrator Studio.
- From the Tools menu, choose Preferences. The Preferences dialog box is displayed.
- In the Preferences dialog box, expand the ODI node, then select User Interface.
The Preferences dialog box, displays the following options for saving login credentials:- Save Login Credentials � Select this option to save credentials.
- Save Login Credentials into Wallet � Select this option to store the Oracle
- If you change any preferences, click OK.
Next Tutorial
Want to Learn More?
- Oracle Data Integrator 12c Documentation
- To learn more about other Oracle products, refer to additional OBEs in the Learning Library.