Skip to main content

Oracle (Sensitive Data Persistence)

Following are the options specific to Oracle:       

  • Connection Name: Enter a unique Connection Name. This fields accepts letters, numbers, and symbols.

  • SSL: For an additional layer of security check the SSL (Secure Socket Layer) checkbox.

  • Connection Type: There are two connection types in oracle:

    1. Basic: Provide the following details for a basic connection:

      1. Hostname: Enter the Hostname of the Oracle server or select from the list of available IPs. You can also search for the hostnames and IP addresses of databases by Find DBMS tasks

      2. IP Address: Enter the IP Address for the connection.

      3. Port Number: Enter the Port Number for establishing a connection. You can also edit the port number later, if required.

      4. Schema Name: Enter the schema name.

      5. Oracle Instance Method:

        1. SID: Enter the Service ID (SID)

        2. Service Name: Enter the Service Name.

    2. TNS: Provide the following details for a basic connection.

      1. TNS Name: Enter the TNS Name of the Oracle server.

      2. IP Address: Enter the IP Address for the connection.

      3. Schema Name: Enter the schema name.

  • Authentication Method: The following authentication methods are available for Oracle Server:

    1. Oracle: Authenticates the connection using Oracle Server Username and Password.

    2. Kerberos: Authenticates the connection using the Kerberos Username and Key Path.

    3. Kerberos with Principal: Authenticates the connection using Kerberos system’s Principal name and password.

*Note: For using the authentication method, Kerberos, and Kerberos with Principal, the environment should be set up on the IDP. Following are the steps to perform the same: 

  1. Check that correct krb5.conf file is available on the IDP machine. If not, copy the krb5.conf file on Windows directory or /etc/ directory.

  2. Ping KDC server and database server using hostname from IDP to verify network connectivity. Add entries in /etc/hosts file, if required. 

  3. Verify that the clock time should be same on IDP, KDC and DB2, Oracle server machine.

  4. (For Kerberos) Obtain TGT manually at IDP machine. 

    1. Login to OS with the Kerberos user.

    2. Run “kinit user” command to obtain TGT. Verify using “klist” command. 

      1. kinit is available in Java/jre/bin folder. 

      2. The default paths are set when client is configured, but if faced with any issues add the following property in “javaOptions” in jetty-embedded.properties present in IDP installation. Once this step has been done, restart the IDP.

        -Doracle.net.kerberos5_cc_name=<path to krb5 cache file>  -Djava.security.krb5.conf=<path to krb5.conf>

    3. Connect through PK Protect by entering the required information. 

 

  • Username: Enter the database username.

  • Password: Enter the database password.

  • Connection Attribute: Select the attribute name from the Connection Attribute drop-down. This functionality allows you to add tags to the created connection.

To proceed further for remaining steps, refer Step 3 in RDBMS Sensitive Data Persistence.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.