Securing Oracle Database using encryption

This topic describes how to encrypt the Network Automation - Data Warehouse data when it uses Oracle Database.

You can secure data when it travels across the network during the client-server CRUD operations in Oracle Database. Network Automation - Data Warehouse acts as a client and the database server acts as a server. You can use the Native Network Encryption (NNE) mechanisms for the network-level encryption.

For detailed information about this encryption mechanism, see the Oracle documentation for the versions you are using in your environment.

Network Automation - Data Warehouse version 19.11.x supports encryption for Oracle Database 11g R2,12c, and 19c

Prerequisites

Ensure that the following prerequisites are met before encrypting the Oracle external database:

  • Network Automation - Data Warehouse is integrated with Oracle Database.
  • (Optional) Wireshark is installed on the computer on which Network Automation - Data Warehouse is installed.

Enabling the Native Network encryption on an existing Network Automation - Data Warehouse server or a freshly installed server

  1. Log on to the computer where Oracle Database has been installed.

  2. Open sqlnet.ora located at %ORACLE_HOME%\NETWORK\ADMIN and add the following entries:

    SQLNET.ENCRYPTION_SERVER = REQUESTED
    SQLNET.ENCRYPTION_TYPES_SERVER = (<valid_encryption_algorithm> [,<valid_encryption_algorithm>])
  3. Restart the Network Automation - Data Warehouse server.
  4. (Optional) Use Wireshark to snoop and check whether the data is encrypted.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*