Connecting to a Data Store

This guide divides setup into cloud admin setup and individual steps for a smoother onboarding experience.
Experienced cloud team members handle the infrastructure, while any user can follow the subsequent instructions to connect and work securely.

Tutorial: Initial Connection Setup Tasks for a Data Store

Performed by a Cloud or Infrastructure Administrator, once per Data Store.

These initial setup tasks enable all users to create a session for connecting to the Data Store.

Tutorial Task Who Frequency
1. Set Up a Secure Connection Tunnel (Bastion) - Provision a Bastion in your OCI environment so that users can safely reach the Data Store. Cloud Team Member or Admin One-time, per Data Store
2. Configure Networking to Permit Secure Connection Tunnel - Update VCN security lists and routing to allow traffic from the Bastion to the Data Store. Cloud Team Member or Admin One-time, per Data Store

Tutorial: Your Personal Setup Tasks to Connect to a Data Store

Each user completes these steps to connect to each Data Store.

These tasks must be completed to establish your personal SQL Developer connection through a secure connection tunnel to the Data Store.

Tutorial Task Who Frequency
1. Create a Secure Connection Session (Bastion Session) - Establish your personal secure session (a Bastion Session) through the secure connection tunnel (Bastion) so that SQL Developer can connect. Any User Approximately Every 3 Hours
2. Set Up and Connect with SQL Developer - Configure SQL Developer for connectivity to the secure bastion tunnel. Any User One Time Setup, Connect Each Time

Additional Context for Data Store Connection Information

Making a connection to a Data Store can be accomplished in several ways. The best approach often depends on your organization’s networking setup and security requirements. It is important to remember that a Data Store is assigned only a private IP address and is not accessible using a public network. Therefore, all connections must either originate from within the private network where the Data Store resides or be made through a secure method such as a VPN or bastion host.

Connections to a Data Store can use either its IP address or fully qualified domain name (FQDN). Both TLS and mTLS protocols are supported, but note that mTLS connections require the use of a Data Store wallet. Popular applications like Oracle SQL Developer support these connectivity patterns, but any tool compatible with JDBC drivers can also be used.