Skip to Main Content
  • Questions
  • Password management of Database Accounts used by application servers

Breadcrumb

Question and Answer

Connor McDonald

Thanks for the question, John.

Asked: October 09, 2020 - 9:59 am UTC

Answered by: Connor McDonald - Last updated: October 19, 2020 - 2:32 am UTC

Category: Database Administration - Version: 12.2.0.3

Viewed 100+ times

You Asked

Greetings,

How can we make our bi-yearly password update of accounts used by hundreds of application servers as easy as possible?  Running the "alter user <username> identified by <newpassword" is easy.  The hard part is updating and encrypting the new password in the hundreds of application servers that use those Oracle database accounts.  

Thank you for your help.

John

and we said...

I would use a wallet for them. Then you never need to change the app server config because they'll never have an encrypted password in there.

Some examples of that here

https://connor-mcdonald.com/2015/09/21/connection-shortcuts-with-a-wallet/

and you rated our response

  (2 ratings)

Reviews

October 15, 2020 - 6:49 pm UTC

Reviewer: A reader

Thank you, Connor.

Would you still recommend using a wallet on the application servers if the application server are using only a JDBC thin driver? If yes, then we would have to install the Oracle client in order to use a wallet. In addition to that, we would have the task of having to patch that Oracle client.
Connor McDonald

Followup  

October 15, 2020 - 10:46 pm UTC

More recent versions can handle it.

Franck did a nice write up here

https://medium.com/@FranckPachot/easy-oracle-cloud-wallet-location-in-the-jdbc-connection-string-c782d2011252

Perfect! Thank you once again, Connor.

October 16, 2020 - 12:26 pm UTC

Reviewer: A reader


Connor McDonald

Followup  

October 19, 2020 - 2:32 am UTC

glad we could help

More to Explore

Administration

Need more information on Administration? Check out the Administrators guide for the Oracle Database