Create a DB System Using the Console

You can create a new DB system using the Console by using the following steps.

General Information

Before you begin, note the following:

  • The DB systems will be provisioned with Oracle Linux 8 (OL8) for Oracle Database versions 23c, 21c, and 19c with 23.3.0, 21.12.0.0, 19.21.0.0, and later release updates (RU) only. All other prior Oracle Database versions will be provisioned with Oracle Linux 7 (OL7).

Procedure

  1. Open the navigation menu. Select Oracle Database, then select Oracle Base Database.
  2. Click Create DB system.
  3. On the Create DB system page, provide the basic information for the DB system by performing the following steps.
  4. Select a compartment: Select a compartment for your new DB system. By default, the DB system is created in your current compartment and you can use the network resources in that compartment.
  5. Name your DB system: A nonunique, display name for the DB system. An Oracle Cloud Identifier (OCID) uniquely identifies the DB system. Avoid entering confidential information.
  6. Select an availability domain: The availability domain in which the DB system must reside.
  7. Configure shape: The shape determines the type of DB system created and the resources allocated to the system. By default, AMD VM.Standard.E4.Flex shape with 4 OCPUs is selected.
  8. To specify a shape other than the default, click Change shape, and select an available shape from the list. For a complete list of shapes, see Available Shapes and How It Determines the Resources Allocated.
  9. Shape series: Select Ampere, AMD, or Intel processor in the processor group.
    • Ampere: Shapes that use Arm-based Ampere processors. The Ampere shapes are flexible.
    • AMD: Shapes that use current-generation AMD processors. The AMD shapes are flexible.
    • Intel: Standard and optimized shapes that use current-generation Intel processors. Both fixed and flexible Intel shapes are available.

    Note:

    If you select an Ampere A1, AMD E4, or Intel X9 flexible shape, the memory, network bandwidth, and maximum theoretical IOPS scale proportionally.
  10. Configure OCPU: Select the number of OCPUs you want to allocate to this instance. For Ampere A1, AMD E4, and Intel X9 flexible shapes, you can select the number of OCPUs by using the slider in the Number of OCPUs per node field.
    • For Ampere A1 shape, a minimum of 1 OCPU and a maximum of 57 OCPUs can be selected.
    • For AMD E4 shape, a minimum of 1 OCPU and a maximum of 64 OCPUs can be selected.
    • For Intel X9 shape, a minimum of 1 OCPU and a maximum of 32 OCPUs can be selected.

    The following resources scale proportionately to the number of OCPUs you selected.

    • Memory (GB): The amount of memory you want to allocate to this instance.
      For Ampere A1, AMD E4, and Intel X9 shapes, the memory will scale proportionally based on the number of OCPUs selected.
      • For Ampere A1 shape, for each OCPU, 8 GB of memory is allocated. A minimum of 8 GB and a maximum of 456 GB of memory is allocated.
      • For AMD E4 shape, for each OCPU, 16 GB of memory is allocated. A minimum of 16 GB and a maximum of 1024 GB of memory is allocated.
      • For Intel X9 shape, for each OCPU, 16 GB of memory is allocated. A minimum of 16 GB and a maximum of 512 GB of memory is allocated.
    • Network bandwidth (Gbps): The amount of network bandwidth you want to allocate to this instance.
      For Ampere A1, AMD E4, and Intel X9 shapes, the bandwidth will scale proportionally based on the number of OCPUs selected. For each OCPU, 1 Gbps of network bandwidth is allocated.
      • For Ampere A1 shape, a minimum of 1 Gbps and a maximum of 40 Gbps of network bandwidth is allocated.
      • For AMD E4 shape, a minimum of 1 Gbps and a maximum of 40 Gbps of network bandwidth is allocated.
      • For Intel X9 shape, a minimum of 1 Gbps and a maximum of 32 Gbps of network bandwidth is allocated.
    • Theoretical max IOPS: The amount of input and output per second (IOPS) you want to allocate to this instance. Theoretical max IOPS is also dependent on the storage you select.
      For Ampere A1, AMD E4, and Intel X9 shapes, the theoretical max IOPS will scale proportionally based on the number of OCPUs selected. For each OCPU, 16K theoretical max IOPS is allocated.
      • For Ampere A1 shape, a minimum of 16K and a maximum of 640K theoretical max IOPS is allocated.
      • For AMD E4 shape, a minimum of 16K and a maximum of 640K theoretical max IOPS is allocated.
      • For Intel X9 shape, a minimum of 16K to a maximum of 512K theoretical max IOPS is allocated.
  11. Click Select shape.
  12. Configure storage: To specify storage other than the default, click Change storage and select an available storage from the list.
    • Ampere A1 shape is only supported on Logical Volume Manager. When the Ampere A1 shape is selected, the storage management software type changes to Logical Volume Manager with the Higher Performance option.
  13. Choose storage management software: Select one of the following:
    • Oracle Grid Infrastructure to use Oracle Automatic Storage Management (recommended for production workloads)
    • Logical Volume Manager to quickly provision your DB system using Logical Volume Manager storage management software.

    Note:

    • Ampere A1 shape is only supported on Logical Volume Manager.
    • The Available storage (GB) value you specify during provisioning determines the maximum total storage available through scaling. For total storage available for each choice, see Storage Scaling Considerations While Using Fast Provisioning.
  14. In the Configure storage performance section, in the Storage volume performance, select one of the following:
    • Balanced for most workloads that require a good balance between performance and cost savings.
    • Higher performance for large databases and workloads with high I/O requirement. It is the default performance level.

    In the Available data storage (GB), select the amount of Block Storage in GB to allocate to the DB system. Available storage can be scaled up or down as needed after provisioning your DB system.

    The read-only Recovery area storage (GB) field displays the amount of storage available for recovery log data (RECO storage). The recovery area storage is determined based on the storage selected. However, you can change the recovery area storage independently after provisioning. For more information about changing the recovery area storage, see Scale the DB System article.

    The read-only Expected theoretical max IOPS for data storage displays the maximum theoretical IOPS that is achievable for the storage you have selected.

  15. Click Save changes.
  16. Provide the following details in the Configure the DB system section.
  17. Total node count: The number of nodes in the DB system. You can specify either one or two nodes. It also depends on the shape and storage you select.
    • Multi-node RAC DB systems require a minimum of two OCPUs per node and are not available on Logical Volume Manager.
    • Ampere A1 shape and VM.Standard2.1 shape are only available on single-node DB systems.
    • Oracle Database 23c is only available on single-node DB systems.
  18. Oracle Database software edition: The database edition supported by the DB system. The database edition cannot be changed later.
    • Oracle Database Standard Edition is not supported on Ampere A1 shape-based DB systems.
    • Oracle Database 23c on Base Database Service currently does not support Standard Edition.
  19. Total storage (GB): Read-only field. It displays the total amount of storage that will be used by the DB system, including storage required by the DB system software. The size of the backup determines the minimum value for available storage.
  20. Cluster name: Displays only for multi-node DB systems to enable you to specify the cluster to store the node.
  21. Theoretical max IOPS: Displays the maximum IOPS that is supported for your instance. It is the minimum of the network IOPS and storage IPOS you selected in the Configure Shape and Configure storage sections.
    • Maximum theoretical IOPS is calculated based on database with 8K block size.
  22. IOPS limiting factor: Displays either Storage or Network based on which the theoretical max IOPS is determined. It helps identify if you need to increase storage or increase the network bandwidth (by increasing the number of OCPUs proportionally) for your shape if more IOPS are required.
  23. Add SSH key: Add the public key portion of each key pair you want to use for SSH access. Select on of the following options:
    • Generate SSH key pair: Use this option to create a new SSH key pair. Click both Save private key and Save public key when using this option. The private key is downloaded to your local system, and must be stored in a safe location. You cannot download another copy of the private key generated during this operation after completing the operation.
    • Upload SSH key files: Select this option to browse or drag and drop your existing public key (.pub) files.
    • Paste SSH keys: Select this option to paste in individual public keys. To paste multiple keys, click + Another SSH key, and supply a single key for each entry.
  24. Choose a license type: The type of license you want to use for the DB system. Your choice affects metering for billing.
    • License included means the cost of this Oracle Cloud Infrastructure Database service resource will include both the Oracle Database software licenses and the service.
    • Bring Your Own License (BYOL) means you will use your organization's Oracle Database software licenses for this Oracle Cloud Infrastructure Database service resource. For more information, see Bring Your Own License.
  25. Provide the following details in the Specify the network information section.
  26. Virtual cloud network: The VCN in which to create the DB system. Click Change compartment to select a VCN in a different compartment.

  27. Client subnet The subnet to which the DB system attaches. For both single-node and multi-node RAC DB systems, do not use a subnet that overlaps with 192.168.16.16/28, which is used by the Oracle Clusterware private interconnect on the database instance. Specifying an overlapping subnet causes the private interconnect to malfunction.

    Click Change compartment to select a subnet in a different compartment.

  28. Network security groups: Optionally, you can specify one or more network security groups (NSGs) for your DB system. NSGs function as virtual firewalls, enabling you to apply a set of ingress and egress security rules to your DB system. A maximum of five NSGs can be specified.

    For more information, see Access and Security and Security Rules for the DB System.

    Note:

    If you select a subnet with a security list, the security rules for the DB system will be a union of the rules in the security list and the NSGs.
    To use network security groups:
    1. Check the Use network security groups to control traffic check box. Note that you must have a virtual cloud network selected to be able to assign NSGs to your DB system.
    2. Specify the NSG to use with the DB system. You may need to use more than one NSG. If you're not sure, contact your network administrator.
    3. To use additional NSGs, click + Another network security group.
  29. Host name prefix: Your choice of host name prefix for the DB system. The host name must begin with an alphabetic character, and can contain only alphanumeric characters and hyphens (-). The maximum number of characters allowed is 16.

    Note:

    The host name must be unique within the subnet. If it is not unique, the DB system will fail to provision.
  30. Host domain name: The domain name for the DB system. If the selected subnet uses the Oracle-provided Internet and VCN Resolver for DNS name resolution, then this field displays the domain name for the subnet and it can't be changed. Otherwise, you can provide your choice of a domain name. Hyphens (-) are not permitted.
  31. Host and domain URL: Combines the host and domain names to display the fully qualified domain name (FQDN) for the database. The maximum length is 64 characters.
  32. Private IP address: Optionally, for non-RAC DB systems, you can define the IP address of the new DB system. This is useful in development contexts where you create and delete a DB system over and over, and you need each new iteration of the DB system to use the same IP address. If you specify an IP address that is currently in use within the subnet, the provisioning operation will fail with an error message regarding the invalid IP address.

  33. Diagnostic collection: The diagnostics collection and notifications feature enables Oracle Cloud Operations and you to identify, investigate, track, and resolve guest VM issues quickly and effectively. Subscribe to events to get notified about resource state changes. You can enable or disable this feature at anytime.

    By default the options are selected for enabling. However, you can select to uncheck the diagnostic collection check boxes if you do not require the diagnostic feature.
    • Enable diagnostic events: Enables and allows Oracle to collect and send fault notifications about critical, warning, and information events for you.
    • Enable incident logs and trace collection: Enables and allows Oracle to receive event notifications and collect incident logs and traces for fault diagnosis and issue resolution.

    Note:

    • The Enable health monitoring diagnostics collection for Oracle Cloud operations viewing is not available for the Base Database Service.
    • You are opting-in with the understanding that the list of events and log files can change in the future. You can opt-out of this feature at any time.
  34. Click Show advanced options to specify advanced options for the DB system and provide the following details.
  35. Fault domain: The fault domain(s) in which the DB system resides. You can select which fault domain to use for your DB system. For multi-node RAC DB systems, you can specify which two fault domains to use. Oracle recommends that you place each node of a multi-node RAC DB system in a different fault domain. For more information about fault domains, see About Regions and Availability Domains.
  36. Time zone: The default time zone for the DB system is UTC, but you can specify a different time zone. The time zone options are those supported in both the Java.util.TimeZone class and the Oracle Linux operating system. For more information, see DB System Time Zone. The following options are available:
    • UTC: configures your DB system to use coordinated universal time.
    • Browser-detected: The console displays the time zone detected by your browser for this option.
    • Select another time zone: To manually specify a time zone, first make a choice using the Region or country selector to select a geographic region, then use the Time zone selector to select your required time zone.

    Tip:

    If you want to set a time zone other than UTC or the browser-detected time zone, and if you do not see the time zone you want, try selecting "Miscellaneous" in the Region or country list.
  37. Encryption: You can select to use encryption based on encryption keys that you manage. By default, the database is configured using Oracle-managed encryption keys. To configure the database with encryption based on encryption keys you manage:
    1. Select Use customer-managed keys. You must have a valid encryption key in Oracle Cloud Infrastructure Vault service. For more information, see Let security admins manage vaults, keys, and secrets topic in Common Policies.

      Note:

      You must use AES-256 encryption keys for your database.
    2. Select a Vault.
    3. Select a Master encryption key.
    4. To specify a key version other than the latest version of the selected key, check Choose the key version and enter the OCID of the key you want to use in the Key version OCID field.

      Note:

      The key version will only be assigned to the container database (CDB) and not to its pluggable database (PDB). The PDB will be assigned an automatically generated new key version.
  38. Tags: If you have permissions to create a resource, then you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. If you are not sure whether to apply tags, skip this option (you can apply tags later) or ask your administrator. For more information about tagging, see Resource Tags.
  39. Click Next to advance to the Database information screen and provide the following information for the initial database.
  40. Database name: The name for the database, also known as the DB_NAME. The database name must begin with an alphabetic character and can contain a maximum of eight alphanumeric characters. Special characters are not permitted.
  41. Database unique name suffix: Optional. The second portion of the database unique name. The complete database unique name is created by appending the database unique name suffix to the database name you specify.
  42. Database unique name: This read-only field displays the complete database unique name (DB_UNIQUE_NAME). The database unique name is a globally unique name for the database. Primary and standby databases in a Data Guard association can share the same database name, but must have different database unique names.
  43. Database image: Determines what Oracle Database version is used for the database. You can mix database versions on the DB system, but not editions. By default, the latest Oracle-published database software image is selected.
    • Oracle Database 23c on Base Database Service currently does not support Standard Edition.

    Click Change database image to use a different Oracle-published image or a custom database software image that you have created in advance, then select an Image Type:

    • Oracle Database software images: These images contain generally available versions of Oracle Database software.

    • Custom database software images: These images are created by your organization and contain customized configurations of software updates and patches. Use the Select a compartment and Select a database version selectors to limit the list of custom database software images to a specific compartment or Oracle Database software major release version.

      Note:

      The custom database software image must be based on an Oracle Database release that meets the following criteria:
      • The release is currently supported by Oracle Cloud Infrastructure
      • The release is supported by the hardware model you are provisioning

    For more information about database software images, see Oracle Database Software Images.

    After selecting a software image, click Select to return to the Create database dialog.

  44. PDB name: Not applicable to Oracle Database 11g (11.2.0.4). The name of the pluggable database. The PDB name must begin with an alphabetic character, and can contain a maximum of eight alphanumeric characters. The only special character permitted is the underscore ( _ ).
  45. In the Create administrator credentials section, a database administrator named sys will be created with the password you supply.
  46. Username: sys (This is a read-only field).
  47. Password: Supply the password for this user. The password must meet the following criteria:
    • A strong password for SYS, SYSTEM, TDE wallet, and PDB administrator.
    • The password must be 9 to 30 characters and contain at least two uppercase, two lowercase, two numeric, and two special characters.
    • The special characters must be _, #, or -.
    • The password must not contain the user name (SYS, SYSTEM, and so on) or the word "oracle" either in forward or reversed order and regardless of casing.
  48. Confirm password: Reenter the SYS password you specified.

  49. Using a TDE wallet password password is optional. If you are using customer-managed encryption keys stored in a vault in your tenancy, the TDE wallet password is not applicable to your DB system. Use Show advanced options at the end of the Database Information section to configure customer-managed keys.

    If you are using customer-managed keys, or if you want to specify a different TDE wallet password, uncheck the Use the administrator password for the TDE wallet box. If you are using customer-managed keys, leave the TDE password fields blank. To set the TDE wallet password manually, enter a password in the Enter TDE wallet password field, and then confirm by entering it into the Confirm TDE wallet password field.

  50. In the Configure database backups dialog, check or uncheck Enable automatic backups, as applicable. If you are enabling automatic backups, you can select to configure Recovery Service or Object Storage as the Backup destination.
    Your choice to use Recovery Service as the backup destination depends on the available limits in your tenancy and the available capacity in the specific region. The following restrictions apply to all regions when you enable automatic backups and want to use Recovery Service as the backup destination:
    • If you have available limits and if there is available capacity in the region, then your choices are Recovery Service (default) and Object Storage.
    • If you have exhausted the default limits for the Recovery Service, then you can only use Object Storage. However, you can make an additional limits request and then use Recovery Service.
    • If there is no available capacity in the region, then you can use only Object Storage. However, after the required capacity becomes available in the region, you can seamlessly switch from Object Storage to Recovery Storage.
    • Ampere A1 shape-based DB systems can only be backed up in the Object Storage.
    • Oracle Database 23c can only be backed up in the Object Storage.
  51. If Recovery Service is selected as the Backup destination, you can configure the following options:

    • Protection policy: You can select from one of the preset protection policies or a custom policy. The system automatically deletes your backups at the end of your chosen protection policy recovery window.

      The following retention periods are available for Recovery Service. The retention periods (in days) are defined in the Recovery Service protection policy.
      • Bronze (14 days)
      • Silver (35 days) (default)
      • Gold (65 days)
      • Platinum (95 days)
      • Custom (User defined protection policy)

    • Real-time data protection: Real-time protection is the continuous transfer of redo changes from a protected database to Recovery Service. This reduces data loss and provides a recovery point objective (RPO) near 0. This is an extra cost option.

    • Deletion options after database termination: You can use the following options to retain managed database backups after the database is terminated. These options can also help restore the database from backups in case of accidental or malicious damage to the database.

      • Retain backups according to the retention period: When a database is terminated, the automatic database backups associated with the terminated database and all of its resources will be removed at the end of the specified retention period.
      • Retain backups for 72 hours, then delete: When a database is terminated, the automatic database backups associated with the terminated database and all of its resources will be retained for 72 hours and then deleted. The backups are retained for 72 hours to safeguard against accidental deletion by the user.
    • Scheduled day for initial backup: Select a day of the week for the initial backup to begin.
    • Scheduled time for initial backup (UTC): Select a time for the initial backup to begin. The initial backup could start at any time or within the chosen two-hour scheduling window.
    • Scheduled time for daily backup (UTC): Select a time for the daily backup to begin. The daily backup could start at any time or within the chosen two-hour scheduling window.
    • Take the first backup immediately: A full backup is an operating system backup of all data files and the control file that constitute an Oracle Database. A full backup must also include the parameter files associated with the database. You can take a database backup when the database is shut down or while the database is open. You must not typically take a backup after an instance failure or other unusual circumstances. If you select to defer the initial backup, your database may not be recoverable in the event of a database failure.
  52. If Object Storage is selected as the Backup destination, you can configure the following options:

    • Backup retention period: If you select to enable automatic backups, you can select a policy with one of the preset retention periods. The system automatically deletes your incremental backups at the end of your chosen retention period. You can change the backup retention period after provisioning.

      The following retention periods are available for Object Storage.
      • 7 days
      • 15 days
      • 30 days (default)
      • 45 days
      • 60 days
    • Scheduled day for full backup: Select a day of the week for the initial and future full backups to begin.
    • Scheduled time for full backup (UTC): Select a time for the full backup to begin. The full backup could start at any time or within the chosen two-hour scheduling window.
    • Scheduled time for incremental backup (UTC): Select a time for the incremental backup to begin. The incremental backup could start at any time or within the chosen two-hour scheduling window.
    • Take the first backup immediately: A full backup is an operating system backup of all data files and the control file that constitute an Oracle Database. A full backup must also include the parameter files associated with the database. You can take a database backup when the database is shut down or while the database is open. You must not typically take a backup after an instance failure or other unusual circumstances. If you select to defer the initial backup, your database may not be recoverable in the event of a database failure.
  53. Click Show advanced options to specify advanced options for the database.
  54. In the Management tab, you can set the following options:
    • Character set: The character set for the database. The default is AL32UTF8.
    • National character set: The national character set for the database. The default is AL16UTF16.
  55. In the Encryption tab, configure the encryption key management option for your database. By default, the database is configured using Oracle-managed encryption keys. To configure the database with encryption based on encryption keys you manage:
    1. Select Use customer-managed keys. You must have a valid encryption key in Oracle Cloud Infrastructure Vault service. For more information, see Let security admins manage vaults, keys, and secrets topic in Common Policies.

      Note:

      You must use AES-256 encryption keys for your database.
    2. Select a Vault.
    3. Select a Master encryption key.
    4. To specify a key version other than the latest version of the selected key, check Choose the key version and enter the OCID of the key you want to use in the Key version OCID field.

      Note:

      The key version will only be assigned to the container database (CDB) and not to its pluggable database (PDB). The PDB will be assigned an automatically generated new key version.
  56. In the Tags tab, you can add free-form tags or defined tags to this resource. You must have permissions to use the tag namespace for defined tags. For information about using tags to manage your OCI resources, see Resource Tags.
  57. Click Create DB system. The DB system appears in the list with a status of Provisioning. The DB system's icon changes from yellow to green (or red to indicate errors).

    After the DB system's icon turns green, with a status of Available, you can click the highlighted DB system name to display details about the DB system. Note the IP addresses. You'll need the private or public IP address, depending on network configuration, to connect to the DB system.

Related Topics