Hi there,
I am trying to secure passwords as much as possible in the development of my jobs. I am attempting to run a sql script that I call from an execute command stage in a sequence.
In this stage I supply the command: sqlplus -s
Then I pass my connect information in the parameters section.
Everything works OK, but when I look in the log the password is shown decrypted. How can I prevent the log from showing the password parameter?
It is defined as an envrionment variable type encrypted.
TIA
Execute command stage with password
Moderators: chulett, rschirm, roy
-
ray.wurlod
- Participant
- Posts: 54607
- Joined: Wed Oct 23, 2002 10:52 pm
- Location: Sydney, Australia
- Contact:
Create a shell script that acts as a wrapper to sqlplus and picks up the password from an environment variable that you've set elsewhere earlier in the same process. You'll need a "here script" within the shell script to respond to the sqlplus "Password:" prompt.
IBM Software Services Group
Any contribution to this forum is my own opinion and does not necessarily reflect any position that IBM may hold.
Any contribution to this forum is my own opinion and does not necessarily reflect any position that IBM may hold.
http://en.wikipedia.org/wiki/Heredocsplayer wrote:What is a "here script"? Also, I would think that password "encrypted" means it won't show anywhere including the log.
And "encrypted" doesn't mean "invisible".
-craig
"You can never have too many knives" -- Logan Nine Fingers
"You can never have too many knives" -- Logan Nine Fingers
sqlplus -s would use the silent mode of sqlplus. But the command and the parameter that you pass to sqlplus command need to be executed wihtout logging or atleast log with encrypted.
How are you executing the command.?
If you are trying with Before/After job, use ExecShSilent.
How are you executing the command.?
If you are trying with Before/After job, use ExecShSilent.
Impossible doesn't mean 'it is not possible' actually means... 'NOBODY HAS DONE IT SO FAR'