Configuring Recovery Service
Review and complete the configuration tasks required to implement Recovery Service in your tenancy.
- Prerequisite Configuration Checklist for Recovery Service
This checklist describes the prerequisite tasks that you must complete before you can use Recovery Service as the backup destination for the databases in your tenancy. - Oracle Database Releases That Support Recovery Service
Review the list of Oracle Database releases that support Recovery Service. - Review Limits for Recovery Service
A service limit is the quota or allowance set on a resource. Use the console to verify that your tenancy's Recovery Service resource limits are adequate to meet your database backup demands. - Create Groups and Users to Manage Recovery Service
Create Oracle Cloud Infrastructure (OCI) user accounts and groups to manage Recovery Service resources. - Assign Policies to Allow Access to Recovery Service and Related Resources
Assign policy statements such that the supported OCI Database Services can use Recovery Service for data protection. - Additional Policy for Multicloud Oracle Databases to Use Recovery Service
Multicloud Oracle Databases, such as Oracle Database@Azure and Oracle Database@Google Cloud require an additional policy to use Recovery Service resources. - Configuring Network Resources for Recovery Service
Use an existing IP4-only subnet in the database VCN for Recovery Service operations. Define security rules to control the backup traffic between your database and Recovery Service. Finally, register the private subnet as a Recovery Service subnet. - Register Recovery Service Subnet
After you have created a private subnet for Recovery Service in your database VCN, use this procedure to register the subnet in Recovery Service. - (Optional) Review Protection Policies for Database Backup Retention
Recovery Service provides predefined protection policies to suit common use cases for backup retention. You can optionally create custom protection policies to suit your internal data retention requirements. - Ways to Manage Recovery Service Resources
In Oracle Cloud Infrastructure (OCI), you can create and manage Recovery Service resources using a variety of interfaces provided to fit your different management use cases.
Prerequisite Configuration Checklist for Recovery Service
This checklist describes the prerequisite tasks that you must complete before you can use Recovery Service as the backup destination for the databases in your tenancy.
Operational backups to two different backup destinations may create data loss scenarios. Therefore, before you enable automatic backups to Recovery Service, you must disable manual backup scripts and processes to other storage destinations.
Table 2-1 Prerequisite Task Checklist to Use Recovery Service as the Automatic Backup Destination
Task | More Information | Required or Optional |
---|---|---|
Verify whether Recovery Service is supported for your target database version |
Required |
|
Review the service limits |
Required |
|
Verify the policies for your tenancy. Assign the additional policy required for multicloud Oracle Databases to use Recovery Service resources. |
Create Groups and Users to Manage Recovery Service Assign Policies to Allow Access to Recovery Service and Related Resources Additional Policy for Multicloud Oracle Databases to Use Recovery Service |
Required |
Configure network resources for Recovery Service |
Required |
|
Register a Recovery Service subnet |
Required |
|
Review protection policies |
(Optional) Review Protection Policies for Database Backup Retention |
Optional |
Parent topic: Configuring Recovery Service
Oracle Database Releases That Support Recovery Service
Review the list of Oracle Database releases that support Recovery Service.
You can use Oracle Database Autonomous Recovery Service as the backup destination for Oracle Cloud databases provisioned with the following Oracle Database releases.
Table 2-2 Oracle Database Releases that Support Recovery Service
Oracle Database Edition and Version | More Information |
---|---|
Oracle Database 19c Release 16 (19.16) or later |
Your target database must meet these minimum requirements:
|
Oracle Database 21c Release 7 (21.7) or later |
Your target database must meet these minimum requirements:
|
Oracle Database 23ai (23.4) or later |
To use Recovery Service, your target database must have a minimum compatibility level of 19.0 (the |
Related Topics
Parent topic: Configuring Recovery Service
Review Limits for Recovery Service
A service limit is the quota or allowance set on a resource. Use the console to verify that your tenancy's Recovery Service resource limits are adequate to meet your database backup demands.
Autonomous Recovery Service has maximum limits for the number of protected databases and the backup storage space utilization. The limits apply to each region.
Table 2-3 Autonomous Recovery Service Resource Limits
Resource | Oracle Universal Credits | Pay As You Go or Trial |
---|---|---|
Autonomous Recovery Service Protected Database Count |
||
Autonomous Recovery Service Space Used for Recovery Window (GB) |
Use the console to review the current service limits and usage information, and request an increase in resource limits, if necessary.
Related Topics
Parent topic: Configuring Recovery Service
Create Groups and Users to Manage Recovery Service
Create Oracle Cloud Infrastructure (OCI) user accounts and groups to manage Recovery Service resources.
You can then assign Recovery Service policy statements to the groups. For example, create a group called recoveryserviceadmin
and assign the policy that allows the group to manage protected databases, protection policies, and Recovery Service subnets.
Table 2-4 Creating Groups and Users for Recovery Service
Task | More Information |
---|---|
Create a group |
|
Create users |
|
Add users to a group |
|
Assign policies to groups |
Assign Policies to Allow Access to Recovery Service and Related Resources |
Parent topic: Configuring Recovery Service
Assign Policies to Allow Access to Recovery Service and Related Resources
Assign policy statements such that the supported OCI Database Services can use Recovery Service for data protection.
In the Console, use the Policy Builder to quickly assign the policies required to use Recovery Service in your tenancy. In the Policy Builder, select Autonomous Recovery Service as the Policy Use Case, and then select these predefined policy templates:
- Ability to do all things with Autonomous Recovery Service
- Let users manage protection policies in Autonomous Recovery Service
- Let users manage Autonomous Recovery Service subnets
Multicloud Oracle Databases require an additional policy to use Recovery Service. See Additional Policy for Multicloud Oracle Databases to Use Recovery Service for more information.
Ability to do all things with Autonomous Recovery Service
The Ability to do all things with Autonomous Recovery Service policy template includes all the policy statements required to provide permissions for the supported database services to use Recovery Service, and for Recovery Service to use the network resources to access databases in a VCN.
You can either select the policy template or add these policy statements using the manual editor in the Policy Builder.
Table 2-5 Policy Statements Required for Using Recovery Service
Policy Statement | Create In | Purpose |
---|---|---|
|
Root compartment |
Enables the OCI Database Service to access protected databases, protection policies, and Recovery Service subnets within your tenancy. |
|
Root compartment |
Enables the OCI Database Service to access the tag namespace in a tenancy. |
|
Root compartment |
Enables Recovery Service to access and manage protected databases, Recovery Service subnets, and protection policies within your tenancy. |
|
Root compartment |
Enables Recovery Service to access and manage the private subnet in each database VCN within your tenancy. The private subnet defines the network path for backups between a database and Recovery Service. |
|
Root compartment |
Enables users in a specified group to access all Recovery Service resources. Users belonging to the specified group can manage protected databases, protection policies, and Recovery Service subnets. |
Let users manage protection policies in Autonomous Recovery Service
The Let users manage protection policies in Autonomous Recovery Service policy template grants permissions for users in a specified group to create, update, and delete protection policy resources in Recovery Service.
You can either select the policy template or add this policy statement using the manual editor in the Policy Builder.
Table 2-6 Policy Statement for Managing Protection Policies
Policy Statement | Create In | Purpose |
---|---|---|
|
Compartment that owns the protection policies. |
Enables all users in a specified group to create, update, and delete protection policies in Recovery Service. |
Consider this example.
RecoveryServiceUser
group with the permissions to create, update, and delete protection policies in ABC
compartment.Allow group RecoveryServiceUser to manage recovery-service-policy in compartment ABC
Let users manage Autonomous Recovery Service Subnets
The Let users manage Autonomous Recovery Service subnets policy template grants permissions for users in a specified group to create, update, and delete Recovery Service subnet resources.
You can either select the policy template or add this policy statement in the Policy Builder.
Table 2-7 Policy Statement for Managing Recovery Service Subnets
Policy Statement | Create In | Purpose |
---|---|---|
|
Compartment that owns the Recovery Service subnets. |
Enables all users in a specified group to create, update, and delete Recovery Service subnets. |
Consider this example.
RecoveryServiceAdmin
group with the permissions to manage Recovery Service subnets in ABC
compartment.Allow group RecoveryServiceAdmin to manage recovery-service-subnet in compartment ABC
Additional Policy for Multicloud Oracle Databases to Use Recovery Service
Multicloud Oracle Databases, such as Oracle Database@Azure and Oracle Database@Google Cloud require an additional policy to use Recovery Service resources.
Use the Policy Builder to manually create the additional policy required for multicloud Oracle Databases.
Table 2-8 Policies Required for Multicloud Oracle Databases to Use Recovery Service
Multicloud Oracle Database Service | Required Policy |
---|---|
Oracle Database@Azure |
Create and assign this policy for Oracle Database@Azure to use Recovery
Service for backups. Specify
ORACLEDBATAZURE as the service name in the policy.
Alternatively, use this policy to assign the permissions for a specific subscription ID linked with Microsoft Azure.
|
Oracle Database@Google Cloud |
Create and assign this policy for Oracle Database@Google Cloud to use Recovery
Service for backups. Specify
ORACLEDBATGOOGLE as the service name in the policy.
Alternatively, use this policy to assign the permissions for a specific subscription ID linked with Google Cloud Platform.
|
See Multicloud Oracle Database Backup Support for more information about using Recovery Service for multicloud Oracle Database backups.
Parent topic: Configuring Recovery Service
Configuring Network Resources for Recovery Service
Use an existing IP4-only subnet in the database VCN for Recovery Service operations. Define security rules to control the backup traffic between your database and Recovery Service. Finally, register the private subnet as a Recovery Service subnet.
- About Using a Private Subnet for Recovery Service
Recovery Service uses a private subnet inside a virtual cloud network (VCN) where your database resides. The private subnet defines the network path for backups between your database and Recovery Service. - Review Networking Service Permissions to Configure a Subnet
Ensure that you have these Networking Service permissions required to create a subnet in the database VCN and to assign security rules for Recovery Service. - Review Subnet Size Requirements and Security Rules for Recovery Service Subnet
The security rules are necessary to allow backup traffic between a database and Recovery Service. - Create a Recovery Service Subnet in the Database VCN
Use the OCI Console to configure a private subnet for Recovery Service in your database virtual cloud network (VCN).
Parent topic: Configuring Recovery Service
About Using a Private Subnet for Recovery Service
Recovery Service uses a private subnet inside a virtual cloud network (VCN) where your database resides. The private subnet defines the network path for backups between your database and Recovery Service.
Oracle recommends that your database VCN must have a single private subnet dedicated for backups to Recovery Service. Your Oracle Cloud database can reside in the same private subnet used by Recovery Service, or in a different subnet within the same VCN.
You can either create a private subnet or use a preexisting subnet in your database VCN. Oracle recommends that you use a subnet size of /24 (256 IP addresses).
Select an IPv4-only subnet for Recovery Service in your database VCN. Do not select an IPv6-enabled subnet as Recovery Service does not support using an IPv6-enabled subnet. See Creating a Subnet to learn more.
- Security Lists
A security list allows you to add security rules at the subnet level. In your database VCN, select the security list that is used for the Recovery Service subnet, and add the ingress rules to allow destination ports 8005 and 2484.
- Network Security Groups (NSG)Network security groups (NSG) enable granular control over security rules that apply to individual VNICs in a VCN. Recovery Service supports these options to configure security rules using NSGs:
- To implement network isolation, create one NSG for the database VNIC (add egress rules to allow ports 2484 and 8005) and a separate NSG for Recovery Service (add ingress rules to allow ports 2484 and 8005).
- Create and use a single NSG (with egress and ingress rules) for the database VNIC and Recovery Service.
If you have configured a security list and an NSG within your database VCN, then the rules defined in the NSGs takes precedence over the rules defined in a security list.
See Comparison of Security Lists and Network Security Groups to learn more.
After you create a private subnet in the database VCN, assign the security rules and then register the subnet as a Recovery Service subnet in Recovery Service. If you have created NSGs to implement security rules, then you must also ensure to associate the Recovery Service NSG with the Recovery Service subnet.
Oracle recommends using a private subnet for your backups. However, it is possible to use a public subnet.
Parent topic: Configuring Network Resources for Recovery Service
Review Networking Service Permissions to Configure a Subnet
Ensure that you have these Networking Service permissions required to create a subnet in the database VCN and to assign security rules for Recovery Service.
Table 2-9 Networking Service Permissions Required to Create a Private subnet and Configure Security Rules for Recovery Service
Operation | Required IAM Policies |
---|---|
Configure a private subnet in a database VCN |
|
Alternatively, you can create a policy that allows a specified group with broader access to networking components.
For example, use this policy to allow a NetworkAdmin
group to manage all networks in any compartment in a tenancy.
Example 2-1 Policy for Network Administrators
Allow group NetworkAdmin to manage virtual-network-family in tenancy
Parent topic: Configuring Network Resources for Recovery Service
Review Subnet Size Requirements and Security Rules for Recovery Service Subnet
The security rules are necessary to allow backup traffic between a database and Recovery Service.
Select an IPv4-only subnet for Recovery Service in your database VCN. Do not select an IPv6-enabled subnet as Recovery Service does not support using an IPv6-enabled subnet. See Creating a Subnet to learn more.
Table 2-10 Subnet size requirements and ingress rules for a private subnet used by Recovery Service
Item | Requirements |
---|---|
Recommended subnet size |
/24 (256 IP addresses) |
General ingress rule 1: Allow HTTPS traffic from Anywhere |
This rule allows backup traffic from your Oracle Cloud Infrastructure Database to Recovery Service.
|
General ingress rule 2: Allows SQLNet Traffic from Anywhere |
This rule allows recovery catalog connections and real-time data protection from your Oracle Cloud Infrastructure Database to Recovery Service.
|
If you use network security groups (NSG) to implement security rules or if your database VCN restricts network traffic between subnets, then ensure to add an egress rule for ports 2484 and 8005 from the database NSG or subnet to the Recovery Service NSG or subnet that you create.
Parent topic: Configuring Network Resources for Recovery Service
Create a Recovery Service Subnet in the Database VCN
Use the OCI Console to configure a private subnet for Recovery Service in your database virtual cloud network (VCN).
Parent topic: Configuring Network Resources for Recovery Service
Register Recovery Service Subnet
After you have created a private subnet for Recovery Service in your database VCN, use this procedure to register the subnet in Recovery Service.
Select an IPv4-only subnet for Recovery Service in your database VCN. Do not select an IPv6-enabled subnet as Recovery Service does not support using an IPv6-enabled subnet.
You can replace a subnet or add more subnets to support the required number of private endpoints.
Parent topic: Configuring Recovery Service
(Optional) Review Protection Policies for Database Backup Retention
Recovery Service provides predefined protection policies to suit common use cases for backup retention. You can optionally create custom protection policies to suit your internal data retention requirements.
Related Topics
Parent topic: Configuring Recovery Service
Ways to Manage Recovery Service Resources
In Oracle Cloud Infrastructure (OCI), you can create and manage Recovery Service resources using a variety of interfaces provided to fit your different management use cases.
Interface | More Information |
---|---|
OCI Console |
|
Application Programming Interfaces (APIs) |
|
Command-Line Interfaces (CLIs) |