Wallet v1

 #!/bin/bash


echo "===== TDE Wallet Check - Version 1 ====="


# ===== PHASE 1: Validate Input and Set Environment =====

echo "PHASE 1: Setting up Oracle Environment"


if [[ -z "$1" ]]; then

    echo "ERROR: ORACLE_SID is required!"

    echo "Usage: $0 <ORACLE_SID>"

    exit 1

fi


export ORACLE_SID=$1

export ORACLE_HOME=/u01/app/oracle/product/19c/dbhome_1

export PATH=$ORACLE_HOME/bin:$PATH

SQLPLUS="$ORACLE_HOME/bin/sqlplus -s / as sysdba"


echo "ORACLE_SID set to: $ORACLE_SID"

echo "ORACLE_HOME: $ORACLE_HOME"


# ===== PHASE 2: Fetch Database Information =====

echo "PHASE 2: Fetching database and wallet details"


get_db_info() {

    $SQLPLUS <<EOF

SET HEAD OFF FEEDBACK OFF PAGESIZE 0 LINESIZE 100

SELECT 

    name || '|' || 

    status || '|' || 

    NVL((SELECT WRL_PARAMETER FROM gv\$encryption_wallet 

         WHERE inst_id = (SELECT INSTANCE_NUMBER FROM v\$instance)), 'NA') || '|' ||

    (SELECT CASE WHEN COUNT(*) > 0 THEN 'YES' ELSE 'NO' END 

     FROM dba_tablespaces WHERE ENCRYPTED='YES')

FROM v\$database, v\$encryption_wallet;

EXIT;

EOF

}


DB_INFO=$(get_db_info)

IFS='|' read -r DBNAME WALLET_STATUS WALLET_LOCATION TBS_ENCR <<< "$DB_INFO"


echo "DB Name: $DBNAME"

echo "Wallet Status: $WALLET_STATUS"

echo "Wallet Location: $WALLET_LOCATION"

echo "Tablespace Encrypted: $TBS_ENCR"


# ===== PHASE 3: Check Wallet Availability =====

echo "PHASE 3: Checking Wallet Presence"


WRL_PRESENT="N"

if [[ "$WALLET_LOCATION" != "NA" && -d "$WALLET_LOCATION" ]]; then

    WRL_PRESENT="Y"

    echo "Wallet Found at: $WALLET_LOCATION"

else

    echo "Wallet Not Found!"

fi


# ===== PHASE 4: Validate Wallet Passwords =====

echo "PHASE 4: Checking Wallet Passwords"


STANDARD_PWD="xyxyxyxyxytsts"

NEWPSWD=$(/path/to/pwEcho.exe $ORACLE_SID WALLET)


PWD_MATCH="N"

CLK_PWD="N"


if [[ "$WRL_PRESENT" == "Y" ]]; then

    WALLET_PWD_MATCH_STD=$($ORACLE_HOME/bin/mkstore -wrl $WALLET_LOCATION -list -password $STANDARD_PWD 2>/dev/null)

    WALLET_PWD_MATCH_CLOAK=$($ORACLE_HOME/bin/mkstore -wrl $WALLET_LOCATION -list -password $NEWPSWD 2>/dev/null)


    if [[ -n "$WALLET_PWD_MATCH_CLOAK" ]]; then

        echo "Cloakware Password is Valid"

        PWD_MATCH="Y"

        CLK_PWD="Y"

    elif [[ -n "$WALLET_PWD_MATCH_STD" ]]; then

        echo "Wallet Password Matches Standard Password"

        PWD_MATCH="Y"

        CLK_PWD="N"

    else

        echo "Wallet Password Does Not Match Any Known Password"

    fi

else

    echo "Skipping password check as wallet is not found."

fi


# ===== PHASE 5: Backup Wallet (if valid) =====

echo "PHASE 5: Backing up Wallet (if password matches)"


WRL_BKUP="N"

SHARED_LOCATION="/tmp/shared"


if [[ "$PWD_MATCH" == "Y" ]]; then

    mkdir -p $SHARED_LOCATION

    cp $WALLET_LOCATION/* $SHARED_LOCATION

    echo "Wallet Backup Completed"

    WRL_BKUP="Y"

else

    echo "Skipping Wallet Backup - Password Validation Failed"

fi


# ===== PHASE 6: Generate Report =====

echo "PHASE 6: Generating Report"


AUTOLOGON=$(grep -q "AUTOLOGIN" <<< "$WALLET_STATUS" && echo "Y" || echo "N")

RUN_DATE=$(date '+%Y-%m-%d %H:%M:%S')

REPORT_FILE="/tmp/report-$(date '+%Y%m%d').log"


cat <<EOF > $REPORT_FILE

DB Name: $DBNAME

TDE: $( [[ "$WALLET_STATUS" == "OPEN" ]] && echo "Y" || echo "N" )

WRL: $WRL_PRESENT

Autologon (valid for 19c.11/12c-NA): $AUTOLOGON

TBS ENCR: $TBS_ENCR

WRL BKUP: $WRL_BKUP

KEY BKUP: Y/N

CLK: $CLK_PWD

PWD Match: $PWD_MATCH

Run Date: $RUN_DATE

EOF


echo "Report saved at $REPORT_FILE"


echo "===== TDE Wallet Check Completed Successfully ====="

Comments

Post a Comment

Popular posts from this blog

Database growth

#!/bin/bash # Log file LOGFILE="db_growth_check.log" echo "Checking yearly database growth on all running Oracle databases..." > $LOGFILE echo "DATABASE_NAME | YEAR | GROWTH_GB" >> $LOGFILE echo "---------------------------------" >> $LOGFILE # Find running Oracle instances (excluding ASM and APX) ps -ef | grep pmon | grep -v grep | grep -Ev "(\+ASM|APX)" | awk -F'_' '{print $3}' | while read -r ORACLE_SID do     if [[ -n "$ORACLE_SID" ]]; then         echo "Processing database: $ORACLE_SID"         # Set Oracle environment         export ORACLE_SID=$ORACLE_SID         export ORAENV_ASK=NO         . oraenv > /dev/null 2>&1         # Run SQL query to check yearly database growth         SQL_OUTPUT=$(sqlplus -s / as sysdba <<EOF SET HEADING OFF; SET FEEDBACK OFF; SELECT '$ORACLE_SID' AS DATABASE_NAME,  ...
Read more

DBA Day-2 ve

 Operating system  CPU mpstat top  load average  pidstat dstat -vr strace---> debug if system CPU usage % is high but if you dont know then use strace -tp `grep testdb1 2>&1 | head 100 debug if User CPU usage % is high but if you dont know then use 6. jobs (hit enter) 6.1 perf record -F 99 -a -g --sleep 10 (Profiling ) 6.2 perf report -n --stdio 6.3 ./perf-tools/execsnoop Memory vmstat I/O iostat -xmd 1 iotop Network sar -n DEV 1 mtr netstat -antpl | grep 1521 nmcli device status ethtool iperf3 -c 10.1.90.51 https://www.youtube.com/watch?v=eWUeJBAiX80 fs.aio-max-nr--> Async I/O max fs.file-max --> Max file open kernal.shmmin --> how many program segment can access(permission) the shared memory kernal.shmall --> maximum amount of shared memory can accessed by all the process other than OS(set to sum of all SGAs on the server divided by page size – ‘getconf PAGESIZE’) kernal.shmmax --> maximum amount of shared memory can accessed by ind...
Read more

Asm

#!/bin/bash # Set environment variables ORACLE_SID=YOUR_SID ORACLE_HOME=/path/to/oracle_home export ORACLE_SID ORACLE_HOME LOG_DIR=/path/to/logs SQL_DIR=/path/to/sql mkdir -p "$LOG_DIR" mkdir -p "$SQL_DIR" DB_USER="/ as sysdba" # Function to generate SQL data for each target type generate_sql() {   local TARGET_TYPE=$1   local SQL_FILE="$SQL_DIR/${TARGET_TYPE}_data.sql"   local OUTPUT_FILE="/tmp/${TARGET_TYPE}_data.txt"   case "$TARGET_TYPE" in     cluster)       echo "SET HEADING OFF; SET FEEDBACK OFF; SET PAGESIZE 0;" > "$SQL_FILE"       echo "SELECT TARGET_NAME || '|' || HOST_NAME || '|' || CREDENTIALS || '|' || CLUSTER_NAME || '|' || VIP_ADDRESS FROM CLUSTER_TARGETS;" >> "$SQL_FILE"       ;;     # Additional target types can be added here     *)       echo "[ERROR] Unknown target type: $TARGET_TYPE"       return 1       ;;   esac ...
Read more