In High Availability (HotStandby) configurations, the Primary and Secondary servers must use the same encryption method and encryption key.
To encrypt HotStandby servers that are using DES encryption
1 Ensure that encryption is enabled on both the Primary and Secondary servers.
2 Encrypt the database on the Primary server.
3 Netcopy the encrypted database to the Secondary server.
4 Connect the HotStandby servers.
To encrypt HotStandby servers that are using OpenSSL encryption
1 Ensure OpenSSL is enabled and available on both Primary and Secondary servers.
2 Encrypt the database on the Primary server.
3 Netcopy the encrypted database to the Secondary server. The Secondary server shuts down with the error Encryption password has not been given for encrypted database.
4 Restart the Secondary server using the same encryption password as used on the Primary.
5 Connect the HotStandby servers.
Note HotStandby traffic is not encrypted with database file encryption. To protect the HSB traffic, other security means are needed. When making an HSB netcopy, the database file and logs are transferred in encrypted form to avoid redundant encryption/decryption of the files.