Skip to Main Content
  • Questions
  • Password management of Database Accounts used by application servers

Breadcrumb

Question and Answer

Connor McDonald

Thanks for the question, John.

Asked: October 09, 2020 - 9:59 am UTC

Last updated: October 19, 2020 - 2:32 am UTC

Version: 12.2.0.3

Viewed 100+ times

You Asked

Greetings,

How can we make our bi-yearly password update of accounts used by hundreds of application servers as easy as possible?  Running the "alter user <username> identified by <newpassword" is easy.  The hard part is updating and encrypting the new password in the hundreds of application servers that use those Oracle database accounts.  

Thank you for your help.

John

and we said...

I would use a wallet for them. Then you never need to change the app server config because they'll never have an encrypted password in there.

Some examples of that here

https://connor-mcdonald.com/2015/09/21/connection-shortcuts-with-a-wallet/

Rating

  (2 ratings)

Comments

A reader, October 15, 2020 - 6:49 pm UTC

Thank you, Connor.

Would you still recommend using a wallet on the application servers if the application server are using only a JDBC thin driver? If yes, then we would have to install the Oracle client in order to use a wallet. In addition to that, we would have the task of having to patch that Oracle client.
Connor McDonald
October 15, 2020 - 10:46 pm UTC

Perfect! Thank you once again, Connor.

A reader, October 16, 2020 - 12:26 pm UTC


Connor McDonald
October 19, 2020 - 2:32 am UTC

glad we could help

More to Explore

Administration

Need more information on Administration? Check out the Administrators guide for the Oracle Database