How to set Oracle wallet to work with SSL and EUS running in RAC environment with multiple databases.

(Doc ID 2000917.1)

Last updated on JULY 11, 2018

Applies to:

Advanced Networking Option - Version to [Release 11.2]
Oracle Unified Directory - Version to [Release 11g]
Information in this document applies to any platform.


RAC nodes with multiple databases running . All of the databases must support EUS as well as SSL, and this is where running into the following problems.

EUS requires that each database have a separate Oracle Wallet. A database's sqlnet.ora file can only specify one Oracle Wallet for EUS. With EUS, multiple databases can share the same sqlnet.ora file by not specifying the wallet in sqlnet.ora as EUS will find each database's wallet in $ORACLE_HOME/admin//wallet/. However, for SSL to work the Wallet location must be specified in the database's sqlnet.ora file, otherwise error "ORA-28865: SSL connection closed" will come. With the Wallet specified in sqlnet.ora for SSL to work, then no more than one database can use that sqlnet.ora for EUS to work properly.

Toward working around problem explained above, each database can use a separate sqlnet.ora file by two means of which I am aware:
1) Each database is in a separate ORACLE_HOME, and each database uses $ORACLE_HOME/network/admin/sqlnet.ora.
2) For each database, TNS_ADMIN is set to a unique value indicating the unique sqlnet.ora to be used.  according to "RAC and Oracle Clusterware Best Practices and Starter Kit (Platform Independent)" ( Doc ID 810394.1 ), TNS_ADMIN should not be set with RAC, although I still don't have a definitive answer about it from that SR after two weeks.

Given the foregoing, to have EUS and SSL working with RAC, is a separate ORACLE_HOME required for each database?


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms