Home » RDBMS Server » Server Administration » Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported (Oracle Database 12c Enterprise Edition Release 12.1.0.2.0 - 64bit - Oracle Linux)
Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645594] Wed, 09 December 2015 09:02 Go to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
I'm having problems connecting to the database using wallet credentials. Just trying to set up a local environment for development which requires passwords to be held securely. Database and Client running on same host. I'm not a DBA or Admin so apologies if this is a stupid problem! I have searched online however and followed a number of tips, none of which have helped. I'd appreciate any advice to get this working. I've pasted below the steps I have taken and the error:

---- create wallet

$ mkstore -wrl /oracle/wallet -createOracle Secret Store Tool : Version 11.1.1.9.0
Copyright (c) 2004, 2015, Oracle and/or its affiliates. All rights reserved.

Enter password:
Enter password again:

$

---- create user credential

$ mkstore -wrl /oracle/wallet -createCredential mark_orcl user1
Oracle Secret Store Tool : Version 11.1.1.9.0
Copyright (c) 2004, 2015, Oracle and/or its affiliates. All rights reserved.

Your secret/Password is missing in the command line
Enter your secret/Password:
Re-enter your secret/Password:
Enter wallet password:
Create credential oracle.security.client.connect_string1
$

---- sqlnet.ora :

WALLET_LOCATION=(SOURCE=(METHOD=FILE)(METHOD_DATA=(DIRECTORY=/oracle/wallet)))
SQLNET.WALLET_OVERRIDE = TRUE
SSL_CLIENT_AUTHENTICATION = FALSE
SSL_VERSION = 0

---- tnsnames.ora

MARK_ORCL =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = TCP)(HOST = localhost)(PORT = 1521))
(CONNECT_DATA =
(SERVER = DEDICATED)
(SERVICE_NAME = ORCL)
)
)

---- Listener

$ lsnrctl stat

LSNRCTL for Linux: Version 12.1.0.2.0 - Production on 09-DEC-2015 06:39:12

Copyright (c) 1991, 2014, Oracle. All rights reserved.

Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521)))
STATUS of the LISTENER
------------------------
Alias LISTENER
Version TNSLSNR for Linux: Version 12.1.0.2.0 - Production
Start Date 09-DEC-2015 02:58:12
Uptime 0 days 3 hr. 41 min. 0 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File /oracle/db/ohome/network/admin/listener.ora
Listener Log File /oracle/db/diag/tnslsnr/orasvr/listener/alert/log.xml
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=1521)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=EXTPROC1521)))
Services Summary...
Service "orcl" has 1 instance(s).
Instance "orcl", status READY, has 1 handler(s) for this service...
Service "orclXDB" has 1 instance(s).
Instance "orcl", status READY, has 1 handler(s) for this service...
The command completed successfully

---- Try to connect via wallet

$ sqlplus /@mark_orcl

SQL*Plus: Release 11.1.0.7.0 - Production on Wed Dec 9 06:42:18 2015

Copyright (c) 1982, 2008, Oracle. All rights reserved.

ERROR:
ORA-12534: TNS:operation not supported


Enter user-name:

---- Connect via connect string

$ sqlplus user1@mark_orcl

SQL*Plus: Release 11.1.0.7.0 - Production on Wed Dec 9 06:43:28 2015

Copyright (c) 1982, 2008, Oracle. All rights reserved.

Enter password:

Connected to:
Oracle Database 12c Enterprise Edition Release 12.1.0.2.0 - 64bit Production
With the Partitioning, OLAP, Advanced Analytics and Real Application Testing options

SQL>

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645595 is a reply to message #645594] Wed, 09 December 2015 09:13 Go to previous messageGo to next message
gazzag
Messages: 1119
Registered: November 2010
Location: Bedwas, UK
Senior Member
 
$ sqlplus /@mark_orcl as sysdba

You could also use:
$ export ORACLE_SID=ORCL
$ sqlplus <username>/<password>

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645596 is a reply to message #645595] Wed, 09 December 2015 09:16 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
sqlplus /@mark_orcl as sysdba has the same error

ORACLE_SID is set already:

$ echo $ORACLE_SID
orcl

sqlplus username/password works (see original post)

Thanks

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645597 is a reply to message #645596] Wed, 09 December 2015 09:21 Go to previous messageGo to next message
John Watson
Messages: 8964
Registered: January 2010
Location: Global Village
Senior Member
If I remember correctly, you do need to have sql.authentication_services configured in your sqlnet.ora, perhaps set it to (ALL) and try again?

And, to do the Moderator bit:

Welcome to the forum. Please read our OraFAQ Forum Guide and How to use [code] tags and make your code easier to read

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645598 is a reply to message #645597] Wed, 09 December 2015 09:27 Go to previous messageGo to next message
BlackSwan
Messages: 26766
Registered: January 2009
Location: SoCal
Senior Member
explain why you are using V11 sqlplus to connect to V12 database.
How many different ORACLE_HOME directories exist on this system?

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645599 is a reply to message #645598] Wed, 09 December 2015 09:37 Go to previous messageGo to next message
John Watson
Messages: 8964
Registered: January 2010
Location: Global Village
Senior Member
Ah, well spotted, BS.

@OP, have you set your TNS_ADMIN variable to point to the directory where the sqlnet.ora file with the wallet location exists?

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645601 is a reply to message #645598] Wed, 09 December 2015 09:48 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
Thanks for your questions. The application server requirements for the application are Fusion Middleware 11g (WebLogic Server 11g and Oracle Forms 11g). So I assume that this is why the client is 11. Database requirements for the application are 12c. Giving the mismatch of versions.

The database and application servers are running on the same host. ORACLE_HOME was set to one thing to install and configure database but then changed when I created the wallet etc to be the application server home. I have no idea if that is correct or not but the ORACLE_HOME seems to need to be changed to compile forms etc, i.e. to application server. I don't know if that answers the question or not?

TNS_ADMIN is set to where the sqlnet.ora file is located that I pasted here.

I added SQLNET.AUTHENTICATION_SERVICES=all but it has not solved the problem

Apologies for not following the standards and for the bad formatting of my code. I can re-paste if needed.

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645603 is a reply to message #645601] Wed, 09 December 2015 09:54 Go to previous messageGo to next message
gazzag
Messages: 1119
Registered: November 2010
Location: Bedwas, UK
Senior Member
notadbamark wrote on Wed, 09 December 2015 15:48
The application server requirements for the application are Fusion Middleware 11g (WebLogic Server 11g and Oracle Forms 11g). So I assume that this is why the client is 11

No. SQL*Plus client version is/can be different to your Fusion Middleware install, just FYI.

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645604 is a reply to message #645603] Wed, 09 December 2015 10:06 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
So do you think an upgrade of sqlplus might solve the issue?

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645606 is a reply to message #645604] Wed, 09 December 2015 10:17 Go to previous messageGo to next message
gazzag
Messages: 1119
Registered: November 2010
Location: Bedwas, UK
Senior Member
As BlackSwan asked, it would be worth investigating how many Oracle homes you already have on the server. What does the following yield, for example?
$ cat /etc/oratab

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645608 is a reply to message #645606] Wed, 09 December 2015 10:25 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
There's nothing in /etc/oratab except comments

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645610 is a reply to message #645608] Wed, 09 December 2015 11:04 Go to previous messageGo to next message
BlackSwan
Messages: 26766
Registered: January 2009
Location: SoCal
Senior Member
post results of OS command below

find / -name sqlplus -ls 2>/dev/null

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645613 is a reply to message #645610] Wed, 09 December 2015 16:04 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
 
3034245   12 -rwxr-xr-x   1 oracle   oinstall     9296 Aug 27  2008 /oracle/fmw/Oracle_FRHome2/bin/sqlplus
1081743    4 drwxr-xr-x   8 oracle   oinstall     4096 Dec  2 11:06 /oracle/fmw/ohome/sqlplus
1085194   12 -rwxr-xr-x   1 oracle   oinstall     8951 Dec  2 11:06 /oracle/fmw/ohome/bin/sqlplus
1867094    4 drwxr-xr-x   4 oracle   oinstall     4096 Jul  9 11:05 /oracle/fmw/Oracle_WT1/sqlplus
3019262    4 drwxr-xr-x   8 oracle   oinstall     4096 Nov 30 05:18 /oracle/fmw/Oracle_FRHome1/sqlplus
2883615   12 -rwxr-xr-x   1 oracle   oinstall     9296 Aug 27  2008 /oracle/fmw/Oracle_FRHome1/bin/sqlplus
2899975    4 drwxr-xr-x   8 oracle   oinstall     4096 Nov 30 07:33 /oracle/fmw/Oracle_FRHome3/sqlplus
2901564   12 -rwxr-xr-x   1 oracle   oinstall     8951 Nov 30 07:34 /oracle/fmw/Oracle_FRHome3/bin/sqlplus
1442235    4 drwxr-xr-x   7 oracle   oinstall     4096 Jul  9 09:28 /oracle/db/ohome/sqlplus
1448975   12 -rwxr-xr-x   1 oracle   oinstall     9407 Jul  9 09:28 /oracle/db/ohome/bin/sqlplus


ORACLE_HOME is /oracle/db/ohome for database and currently set to /oracle/fmw/Oracle_FRHome3 for app server. Multiple/duplicate (incomplete) app server installations due to failed Forms installations.

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645614 is a reply to message #645613] Wed, 09 December 2015 16:34 Go to previous messageGo to next message
John Watson
Messages: 8964
Registered: January 2010
Location: Global Village
Senior Member
I happen to be teaching a course on Oracle security this week, and this demo worked for me earlier today. Try it:
md \tmp\john
mkstore -wrl \tmp\john -create
mkstore -wrl \tmp\john -createCredential nopass scott tiger
mkstore -wrl \tmp\john -listCredential

copy con \tmp\john\tnsnames.ora
nopass=(description=(address=(protocol=tcp)(host=127.0.0.1)(port=1521))(connect_data=(service_name=orcl)))

copy con \tmp\john\sqlnet.ora
wallet_location=(source=(method=file)(method_data=(directory=\tmp\john)))
sqlnet.wallet_override=true

set TNS_ADMIN=\tmp\john

sqlplus /@nopass

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645622 is a reply to message #645614] Thu, 10 December 2015 02:42 Go to previous messageGo to next message
gazzag
Messages: 1119
Registered: November 2010
Location: Bedwas, UK
Senior Member
 
copy CON \tmp\john\tnsnames.ora
nopass=(description=(address=(protocol=tcp)(host=127.0.0.1)(port=1521))(connect_data=(service_name=orcl)))

Nostalgia! Love it, John Smile

For those younger than me, CON stands for CONsole. Like stdin in Unix. To exit out, press <CTRL>-C to save your keyboard input to the specified file, "\tmp\john\tnsnames.ora"

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645623 is a reply to message #645622] Thu, 10 December 2015 02:43 Go to previous messageGo to next message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
Thanks John. I think this is pretty much what I've already tried and doesn't work unfortunately.

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645628 is a reply to message #645623] Thu, 10 December 2015 03:32 Go to previous messageGo to next message
gazzag
Messages: 1119
Registered: November 2010
Location: Bedwas, UK
Senior Member
 
$ tnsping mark_orcl

Report message to a moderator

Re: Unable to connect via wallet credentials - ORA-12534: TNS:operation not supported [message #645631 is a reply to message #645628] Thu, 10 December 2015 03:40 Go to previous message
notadbamark
Messages: 8
Registered: December 2015
Junior Member
 
$ tnsping mark_orcl

TNS Ping Utility for Linux: Version 11.1.0.7.0 - Production on 10-DEC-2015 01:36:24

Copyright (c) 1997, 2008, Oracle.  All rights reserved.

Used parameter files:
/oracle/fmw/Oracle_FRHome3/network/admin/orcl/network/admin/sqlnet.ora


Used TNSNAMES adapter to resolve the alias
Attempting to contact (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = localhost)(PORT = 1521)) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = ORCL)))
OK (10 msec)

[Updated on: Thu, 10 December 2015 03:41]

Report message to a moderator

Previous Topic: sessions established by each user per hour
Next Topic: Directory issue in 11g
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Sat Feb 08 12:20:16 CST 2025
.:: Forum Home :: Blogger Home :: Wiki Home :: Contact :: Privacy ::.