To create an Oracle wallet to store credentials on a hardware security module that complies with PKCS #11:
Start Oracle Wallet Manager.
(UNIX) At the command line, enter the following command:
owm
(Windows) Select Start, Programs, Oracle-HOME_NAME, Integrated Management Tools, Wallet Manager
From the Wallet menu, select New.
The New Wallet dialog box appears.
Enter the following information:
Password and Confirm Password: Enter a password in these two fields. Ensure that you follow the guidelines in "Required Guidelines for Creating Oracle Wallet Passwords". This password protects unauthorized use of your credentials.
Wallet Type: Select PKCS11.
Click OK to continue.
The PKCS11 Information window appears.
In the PKCS11 Information window, enter the following information: From the Select Hardware Vendor list, select a vendor name.
Hardware Vendor: Select the vendor name. SafeNET and nCipher hardware have been certified to interoperate with Oracle wallets.
PKCS11 library filename field, enter the path to the directory where the PKCS11 library is stored, or click Browse to find it by searching the file system.
Smart Card password: Enter this password. The smart card password, which is different from the wallet password, is stored in the wallet.
Click OK.
An alert is displayed, and informs you that a new empty wallet has been created. It prompts you to decide whether you want to add a certificate request.
When prompted to create a certificate request, select one of the following options:
Yes: See "Adding a Certificate Request".
No: If you select No, then you are returned to the Oracle Wallet Manager main window. The new wallet you just created is displayed in the left window pane. The certificate has a status of [Empty], and the wallet displays its default trusted certificates.
From the Wallet menu, select Save In System Default to save the new wallet.
If you do not have permission to save the wallet in the system default, you can save it to another location.
A message at the bottom of the window confirms that the wallet was successfully saved.
If you change the smart card password or move the PKCS #11 library, an error message displays when you try to open the wallet. Then you are prompted to enter the new smart card password or the new path to the library.