Target Database Registration Overview
To use an Oracle database with Oracle Data Safe, you first need to register it with Oracle Data Safe.
Supported Target Databases
The following table lists the Oracle databases that you can register with Oracle Data Safe; their supported workload types, software editions, and versions; connection protocol options; and connection requirements.
Note:
- SQL Firewall management in Oracle Data Safe is only available for Oracle Database 23ai target databases.
- Oracle Data Safe supports the registration of Active Data Guard deployments in Oracle Database 19c (19.21 and above) and Oracle Database 23ai.
- Oracle Data Safe supports the registration of container databases (CDBs) in Oracle Database 19c and above.
- Provisioning and retrieval of audit policies is not supported in Oracle Database 12.1 and below.
Oracle Database | Supported Workload Types/Oracle Database Software Editions/Versions | TCP/TLS Connection Protocol Options | Connectivity Options |
---|---|---|---|
Oracle Autonomous Database Serverless |
Workload types:
Versions: Latest version |
TLS |
Public IP: No requirements Private IP: Private endpoint |
Oracle Autonomous Database on Dedicated Exadata Infrastructure (Private IPs) |
Workload types:
Versions: Latest version |
TLS |
Private endpoint |
Oracle Base Database
Exadata Database on Dedicated Infrastructure (Exadata VM cluster, Private IP) |
Oracle Database software editions:
Versions: 11.2.0.4, 12.1, 12.2.0.1 or later |
TCP or TLS |
Public IP: No requirements Private IP: Private endpoint |
Oracle Database on a compute instance in Oracle Cloud Infrastructure |
Oracle Database software editions:
Versions: 11.2.0.4, 12.1, 12.2.0.1 or later |
TCP or TLS |
|
Oracle Database on a compute instance in a non-Oracle cloud environment |
Oracle Database software editions:
Versions: 11.2.0.4, 12.1, 12.2.0.1 or later |
TCP or TLS |
|
On-Premises Oracle Database |
Oracle Database software editions:
Versions: 11.2.0.4, 12.1, 12.2.0.1 or later |
TCP or TLS |
|
Exadata Database on Cloud@Customer |
Oracle Database software editions:
Versions: 11.2.0.4, 12.1, 12.2.0.1 or later |
TCP or TLS |
|
Autonomous Database on Exadata Cloud@Customer |
Workload types:
Versions: Latest version |
TLS |
|
Oracle Database@Azure Database: Oracle Exadata Database@Azure |
Oracle Database software editions:
Versions: 19c |
TCP or TLS |
Private IP: Private endpoint |
Amazon RDS for Oracle |
Oracle Database software editions:
Versions: 19c or 21c |
TCP or TLS |
|
* The Data Discovery and Data Masking features are not supported for JSON type columns.
Security Levels for Target Databases
To use a database with Oracle Data Safe, you need to configure security in Oracle Cloud Infrastructure Identity and Access Management (IAM) and on the database.
There are two levels of security that you need to configure for a target database:
- Policies in IAM - You need to configure policies in IAM that allow users access to compartments, Oracle databases, network resources, and Oracle Data Safe resources. You may also need to update security lists and network security groups.
- Roles on the target database - You need to grant roles to the Oracle Data Safe service account on your database. The roles determine the Oracle Data Safe features that you can use with your database.
Where to Register Target Databases
You can register target databases from the following locations:
- Register any target database via a wizard from the Overview page for the Oracle Data Safe service in the Oracle Cloud Infrastructure Console.
- Register any target database from the Target Databases page for the Oracle Data Safe service in the Oracle Cloud Infrastructure Console. You can manually register a target database (for advanced users) or use a wizard.
- Register an Autonomous Database with Oracle Data Safe from an Autonomous Database's Console in Oracle Cloud Infrastructure.