Create an Oracle Data Safe Private Endpoint

You can create an Oracle Data Safe private endpoint to connect Oracle Data Safe to an Oracle database that has a private IP address. The database can be located in or outside of Oracle Cloud Infrastructure (OCI). Create the Oracle Data Safe private endpoint on the Private endpoints page in the Oracle Data Safe service in Oracle Cloud Infrastructure.

Prerequisite Tasks for Creating an Oracle Data Safe Private Endpoint

Prior to creating an Oracle Data Safe private endpoint, be sure to obtain permission in Oracle Cloud Infrastructure to create an Oracle Data Safe private endpoint and create virtual networking resources. See Target Registration Resources.

Create an Oracle Data Safe Private Endpoint

  1. Refer to the following table to obtain the network information for your database.
    Database How to Find Network Information for your Database
    Oracle Autonomous AI Database Serverless (private IP address)
    1. From the navigation menu in Oracle Cloud Infrastructure, select Oracle AI Database, and then Autonomous AI Database.
    2. Select the compartment that contains your database.
    3. Click the name of your database.
    4. Under Network on the Autonomous AI Database information tab, note the VCN and subnet names.
    Autonomous AI Database on Dedicated Exadata Infrastructure (private IP address)
    1. From the navigation menu in Oracle Cloud Infrastructure, select Oracle AI Database, and then Autonomous AI Database on Dedicated Infrastructure.
    2. Click Autonomous Exadata Infrastructure.
    3. On the right, in the Autonomous Exadata Infrastructure table, click the name of the infrastructure in which your database exists.
    4. Under Network, note the VCN and subnet names.
    Oracle Base Database Service - DB system (private IP address)
    1. From the navigation menu in Oracle Cloud Infrastructure, select Oracle AI Database, and then Oracle Base Database Service.
    2. Click the name of your DB system.
    3. On the DB system information tab, under Network, note the VCN and subnet names.
    Oracle database on a compute instance in Oracle Cloud Infrastructure
    1. From the navigation menu in Oracle Cloud Infrastructure, select Compute, and then Instances.
    2. Click the name of your compute instance.
    3. On the Instance information tab, note the VCN and subnet names.
    Oracle database on a compute instance in a non-Oracle cloud environment
    1. From the navigation menu in Oracle Cloud Infrastructure, select Networking, and then Site-to-Site VPN (IPSec) or FastConnect.
    2. Select the VCN and subnet in Oracle Cloud Infrastructure that has connectivity via VPN Connect or FastConnect to your database.
    3. If you do not have VPN Connect or FastConnect set up, Oracle recommends that you use an Oracle Data Safe on-premises connector instead. See Create an Oracle Data Safe On-Premises Connector.
    On-premises Oracle database

    Obtain the name of the virtual cloud network and subnet on which your on-premises Oracle database can be accessed.
    Amazon RDS for Oracle

    Obtain the name of the virtual cloud network and subnet on which your Amazon RDS for Oracle database can be accessed.
  2. From the navigation menu in Oracle Cloud Infrastructure, select Oracle AI Database, and then under Data Safe - Database Security, select Target Databases.
    The Target database page opens.
  3. On the left, select Private Endpoints.
    The Private endpoints page opens.
  4. On the right, select Create private endpoint.
    The Create private endpoint panel opens.
  5. In the Name box, enter a name for your private endpoint.
  6. Select a compartment in which to store your private endpoint.
  7. Select the compartment for the virtual cloud network (VCN) for your database, and then select the VCN .
  8. Select the compartment that stores the subnet, and then select the subnet.
    The subnet can be in a different compartment than the VCN. The subnet that you select needs to have access to the database's subnet.
  9. (Optional) Enter a private IP address.
    If you do not specify a private IP address, Oracle Cloud Infrastructure automatically generates one for you in the selected subnet.
  10. (Optional) Select the compartment for the network security group (NSG) to which your database belongs, and then select the NSG.
  11. (Optional) To add another network security group, select + Another network security group, and select the compartment and network security group.
  12. Select Create private endpoint.
    A private endpoint for Oracle Data Safe is provisioned in your database's VCN.
  13. To view details for your private endpoint, select its name. Take note of the private IP address that was assigned to the private endpoint (or that you assigned to it). It is needed for configuring security rules.