Hi,
I have an 18c XE database in which I experimented with TDE for a tablespace. That tablespace is no longer present in the database and I'd like the system to forget that I ever tried it out.
I migrated the data from the encrypted tablespace to an unencrypted tablespace and dropped the encrypted tablespace.
I subsequently created an application container database ("app") from the PDB in which I carried out the experiment and created an application database ("live") for that.
I then got the application working (new software, migrated data from 11g XE, ...) and wish to now migrate this to 21c XE on the same RedHat 7 system so that I can have a "play" version of the application based on the same application container as a sibling of the "real" one.
However, if I try to unplug the PDBs, it complains about not having exported the keystore:
alter pluggable database "live" unplug into ..
gives: "ORA-46680: master keys of the container database must be exported".
ADMINISTER KEY MANAGEMENT EXPORT ENCRYPTION KEYS WITH SECRET "my_secret" TO '...' identified by "password"
gives: "ORA-28417: password-based keystore is not open"
administer key management set keystore open identified by "password" container = all
gives "ORA-28354: Encryption wallet, auto login wallet, or HSM is already open"
I tried expdp/impdp and I think that didn't quite work with the application container as it gave all sorts of errors and very little of the application and not the schema which holds the data.
Any suggestions on how (best?) to migrate this to 21c XE?
I think if I can just tell 18c to forget about the encryption I can then unplug/... as per the documentation.
Thanks,
Tim