Oracle Wallet Set Up

Environment: Windows XP SP3, Oracle Client 11.1.0

Step 1:


Open your sqlnet.ora file (mine is located in C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN) and add section below at the end:

The DIRECTORY parameter in line 5 determines  where your wallet files will be created. It has to be an absolute path. To keep it simple I set mine to the same directory where sqlnet.ora, listener.ora and tnsnames.ora files sit.


Step 2:
Run shell command mkstore -wrl “C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN” -create (see below). You will be asked to set up a password for the wallet. This password has no relation to the TNS credentials, it’s to protects wallet itself. The directory path has to be the same as in previous step (in my case it’s C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN)


You will notice wallet files created in that directory:




Step 3:

Open tnsnames.ora file (usually in the same directory where sqlnet.ora sits), and create a new TNS entry which you will be using with the wallet. Normally you would want to just copy an exiting entry giving it a new alias. In example below I create a TNS entry PRDSPW by copying an existing TEST one:



Step 4:

Run shell command mkstore -wrl “C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN” -createCredential PRDSPW dummy_user dummy_pass (see below), where PRDSPW is the special TNS name we created in Step 3, dummy_user – database username, dummy_pass – database password. You will be asked to provide wallet password that we set up in Step 2. Path (C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN) – is the same as in all previous steps.



All done.

Now if you run command mkstore -wrl “C:\oracle\product\11.1.0\db_1\NETWORK\ADMIN” -listCredential it will list a new wallet entry that we just created:


From now on you can connect to PRDSPW by calling wallet entry without exposing your database user name and password:




Command to delete an individual credential: