Connecting to a Data Store
This guide divides setup into cloud admin setup and individual steps for a smoother onboarding experience.
Experienced cloud team members handle the infrastructure, while any user can follow the subsequent instructions to connect and work securely.
Tutorial: Initial Connection Setup Tasks for a Data Store
Performed by a Cloud or Infrastructure Administrator, once per Data Store.
These initial setup tasks enable all users to create a session for connecting to the Data Store.
| Tutorial Task | Who | Frequency |
|---|---|---|
| 1. Set Up a Secure Connection Tunnel (Bastion) - Provision a Bastion in your OCI environment so that users can safely reach the Data Store. | Cloud Team Member or Admin | One-time, per Data Store |
| 2. Configure Networking to Permit Secure Connection Tunnel - Update VCN security lists and routing to allow traffic from the Bastion to the Data Store. | Cloud Team Member or Admin | One-time, per Data Store |
Tutorial: Your Personal Setup Tasks to Connect to a Data Store
Each user completes these steps to connect to each Data Store.
These tasks must be completed to establish your personal SQL Developer connection through a secure connection tunnel to the Data Store.
| Tutorial Task | Who | Frequency |
|---|---|---|
| 1. Create a Secure Connection Session (Bastion Session) - Establish your personal secure session (a Bastion Session) through the secure connection tunnel (Bastion) so that SQL Developer can connect. | Any User | Approximately Every 3 Hours |
| 2. Set Up and Connect with SQL Developer - Configure SQL Developer for connectivity to the secure bastion tunnel. | Any User | One Time Setup, Connect Each Time |
Additional Context for Data Store Connection Information
Making a connection to a Data Store can be accomplished in several ways. The best approach often depends on your organization’s networking setup and security requirements. It is important to remember that a Data Store is assigned only a private IP address and is not accessible using a public network. Therefore, all connections must either originate from within the private network where the Data Store resides or be made through a secure method such as a VPN or bastion host.
Connections to a Data Store can use either its IP address or fully qualified domain name (FQDN). Both TLS and mTLS protocols are supported, but note that mTLS connections require the use of a Data Store wallet. Popular applications like Oracle SQL Developer support these connectivity patterns, but any tool compatible with JDBC drivers can also be used.