Target Database Registration Overview

To use a database with Oracle Data Safe, you first need to register it with Oracle Data Safe.

Supported Target Databases

The following tables lists Oracle AI Databases that you can register with Oracle Data Safe; their supported workload types, software editions, and versions; connection protocol options; and connection requirements. The first table lists supported Oracle AI Databases running on Oracle Cloud Infrastructure or on-premises, while the second lists supported databases running in other cloud environments.

Note:

  • SQL Firewall management in Oracle Data Safe is only available for Oracle AI Database 26ai target databases.
  • Oracle Data Safe supports the registration of Active Data Guard deployments for Oracle Database, Release Update 12.2 and above. The minimum version supported for using Activity Auditing with Active Data Guard is Oracle Database, Release Update 19.21.
  • Oracle Data Safe supports the registration of container databases (CDBs) in Oracle Database 19c and above.
  • Provisioning and retrieval of audit policies is not supported in Oracle Database, Release Update 12.1 and below.

Table 3-1 Oracle AI Databases running in Oracle Cloud Infrastructure or on-premises

Oracle AI Database Supported Workload Types/Oracle AI Database Software Editions/Versions TCP/TLS Connection Protocol Options Connectivity Options Active Data Guard Support

On-Premises Oracle AI Database

Software editions:

  • Standard Edition
  • Enterprise Edition

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS
  • Private endpoint
  • On-premises connector

Supported

Oracle Autonomous AI Database on Dedicated Exadata Infrastructure (Private IPs)

Workload types:

  • Autonomous AI Lakehouse
  • Autonomous AI Transaction Processing

Versions: Latest version

TLS

Private endpoint

 Not supported

Oracle Autonomous AI Database on Exadata Cloud@Customer

Workload types:

  • Autonomous AI Lakehouse
  • Autonomous AI Transaction Processing
  • Autonomous AI JSON Database*

Versions: Latest version

TLS
  • Private endpoint
  • On-premises connector
 Not supported

Oracle Autonomous AI Database Serverless

Workload types:

  • Autonomous AI Lakehouse
  • Autonomous AI Transaction Processing
  • Autonomous AI JSON Database*

Versions: Latest version

TLS

Public IP: No requirements

Private IP: Private endpoint

 Not supported

Oracle Base Database Service

DB system - Virtual Machine

Software editions:

  • Standard Edition
  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS

Private IP: Private endpoint

Supported

Oracle AI Database on a compute instance in Oracle Cloud Infrastructure

Software editions:

  • Standard Edition
  • Enterprise Edition

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS
  • Private endpoint (recommended)
  • On-premises connector
 Supported

Oracle Exadata Database Service on Cloud@Customer

Software editions:

  • Standard Edition
  • Enterprise Edition

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS
  • Private endpoint
  • On-premises connector

Supported

Oracle Exadata Database Service on Dedicated Infrastructure

Software editions:

  • Standard Edition
  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS

Private IP: Private endpoint

Supported

Oracle Exadata Database Service on Exascale Infrastructure

Software editions:

  • Standard Edition
  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS

Private IP: Private endpoint

Supported

Table 3-2 Oracle AI Databases running in other cloud environments

Oracle AI Database Supported Workload Types/Oracle AI Database Software Editions/Versions TCP/TLS Connection Protocol Options Connectivity Options Active Data Guard Support
Amazon RDS for Oracle

Software editions:

  • Standard Edition 2
  • Enterprise Edition

Versions: Oracle Database 19c or 21c

TCP or TLS
  • Private endpoint
  • On-premises connector
 Supported
Oracle Database@AWS

Oracle Exadata Database Service

Registration through the Oracle Cloud Database Wizard

Software editions:

  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: 19c

TCP or TLS

Private endpoint

Supported
Oracle Database@Azure

Oracle Autonomous AI Database

Registration through the Autonomous AI Database Wizard

Workload types:

  • Autonomous AI Lakehouse
  • Autonomous AI Transaction Processing
  • Autonomous AI JSON Database*

Versions: Latest version

 TLS Private Endpoint Not supported
Oracle Database@Azure

Oracle Exadata Database Service

Registration through the Oracle Cloud Database Wizard

Software editions:

  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: 19c

TCP or TLS

Private endpoint

Supported
Oracle Database@Google Cloud

Oracle Autonomous AI Database

Registration through the Autonomous AI Database Wizard

Workload types:

  • Autonomous AI Lakehouse
  • Autonomous AI Transaction Processing
  • Autonomous AI JSON Database*

Versions: Latest version

 TLS Private Endpoint Not supported
Oracle Database@Google Cloud

Oracle Exadata Database Service

Registration through the Oracle Cloud Database Wizard

Software editions:

  • Enterprise Edition
  • Enterprise Edition High Performance
  • Enterprise Edition Extreme Performance

Versions: 19c

TCP or TLS

Private endpoint

Supported

Oracle AI Database on a compute instance in a non-Oracle cloud environment

Software editions:

  • Standard Edition
  • Enterprise Edition

Versions: Oracle Database, Release Update 11.2.0.4, 12.1, 12.2.0.1 or later

TCP or TLS
  • Private endpoint
  • On-premises connector (recommended)
 Supported

* The Data Discovery and Data Masking features are not supported for JSON type columns.

Oracle Data Safe is a multi-tenant service running in a service tenancy owned by Oracle. Service data associated with the instance is stored in a back-end Oracle Autonomous AI Database Serverless database that’s dedicated to the customer and region and is isolated from other customers' instances. For more information, refer to the Privacy and Security Feature Guidance for Oracle Autonomous AI Database Serverless available on My Oracle Support (Doc ID 114.2).

Security Levels for Target Databases

To use a database with Oracle Data Safe, you need to configure security in Oracle Cloud Infrastructure Identity and Access Management (IAM) and on the database.

There are two levels of security that you need to configure:

  • Policies in IAM - You need to configure policies in IAM that allow users access to compartments, target databases, network resources, and Oracle Data Safe resources. You may also need to update security lists and network security groups.
  • Roles on the target database - You need to grant roles to the Oracle Data Safe service account on your target database. The roles determine the Oracle Data Safe features that you can use with your target database.

Where to Register Target Databases

You can register target databases from the following locations:

  • Register any target database via a wizard from the Overview page for the Oracle Data Safe service in the Oracle Cloud Infrastructure Console.
  • Register any target database from the Target databases page for the Oracle Data Safe service in the Oracle Cloud Infrastructure Console. You can manually register a target database (for advanced users) or use a wizard.
  • Register an Autonomous AI Database with Oracle Data Safe from an Autonomous AI Database's Console in Oracle Cloud Infrastructure.