Copy the encrypted password that you generated with the ENCRYPT PASSWORD
command (see Encrypting a Password in a Command or Parameter File), and then paste it into the appropriate Oracle GoldenGate parameter statement or command as shown in Table 11-1. Option descriptions follow the table.
Table 11-1 Specifying Encrypted Passwords in Parameters and Commands
Purpose of the Password | Parameter or Command to Use |
---|---|
Oracle GoldenGate database loginFoot1 | USERID user, PASSWORD password, &algorithm ENCRYPTKEY {keyname | DEFAULT} |
Oracle GoldenGate database login for Oracle ASM instance | TRANLOGOPTIONS ASMUSER SYS@ASM_instance_name, &ASMPASSWORD password, &algorithm ENCRYPTKEY {keyname | DEFAULT} |
Oracle GoldenGate database login for a downstream Oracle mining database | [MININGUSER {/ | user}[, MININGPASSWORD password]&[algorithm ENCRYPTKEY {key_name | DEFAULT}]&[SYSDBA]] |
Password substitution for | DDLOPTIONS DEFAULTUSERPASSWORD password &algorithm ENCRYPTKEY {keyname | DEFAULT} |
Oracle TDE shared-secret password | DBOPTIONS DECRYPTPASSWORD passwordFoot 2 algorithm &ENCRYPTKEY {keyname | DEFAULT} |
Oracle GoldenGate database login from GGSCI | DBLOGIN USERID user, PASSWORD password, &algorithm ENCRYPTKEY {keyname | DEFAULT} |
Oracle GoldenGate database login to a downstream Oracle mining database from GGSCI | MININGDBLOGIN USERID user, PASSWORD password,&algorithm ENCRYPTKEY {keyname | DEFAULT} |
Footnote1
Syntax elements required for USERID
vary by database type. See Reference for Oracle GoldenGate for more information.
Footnote2
This is the shared secret.
Where:
user
is the database user name for the Oracle GoldenGate process or (Oracle only) a host string. For Oracle ASM, the user must beSYS
.password
is the encrypted password that is copied from theENCRYPT PASSWORD
command results.algorithm
specifies the encryption algorithm that was used to encrypt the password:AES128
,AES192
,AES256
, orBLOWFISH
. AES128 is the default if the default key is used and no algorithm is specified.ENCRYPTKEY
keyname
specifies the logical name of a user-created encryption key in theENCKEYS
lookup file. Use ifENCRYPT PASSWORD
was used with theKEYNAME
keyname
option.ENCRYPTKEY DEFAULT
directs Oracle GoldenGate to use a random key. Use ifENCRYPT PASSWORD
was used with theKEYNAME
DEFAULT
option.
The following are examples of using an encrypted password in parameters and command:
SOURCEDB db1 USERID ogg,&PASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES128, ENCRYPTKEY securekey1USERID ogg, PASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &BLOWFISH, ENCRYPTKEY securekey1USERID ogg, PASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &BLOWFISH, ENCRYPTKEY DEFAULTTRANLOGOPTIONS ASMUSER SYS@asm1, &ASMPASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES128, ENCRYPTKEY securekey1DBLOGIN USERID ogg, PASSWORD &AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES128, ENCRYPTKEY securekey1DDLOPTIONS DEFAULTUSERPASSWORD &AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES 256 ENCRYPTKEY mykeyDBOPTIONS DECRYPTPASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES 256 ENCRYPTKEY mykeyDDLOPTIONS PASSWORD AACAAAAAAAAAAAJAUEUGODSCVGJEEIUGKJDJTFNDKEJFFFTC, &AES 256 ENCRYPTKEY mykey