Skip Ribbon Commands
Skip to main content
Navigate Up
Sign In

Quick Launch

HOW TO: Configure an Oracle connection to connect securely to Oracle Autonomous Data Warehouse Cloud from Cloud Data Integration, Summer 2018
Solution
Perform the following steps to establish secure communication with Oracle Autonomous Data Warehouse Cloud using an Oracle connection from Cloud Data Integration:

Install the Java Cryptography Extension (JCE 8) Unlimited Strength Jurisdiction Policy Files on the Secure Agent Machine
Oracle Autonomous Data Warehouse Cloud uses strong encryption (AES192/AES256). 
To establish a secure connection to Oracle database using strong encryption, you must perform the following steps:
1. Download the Oracle JCE 8 files. 
    You can download the Oracle JCE 8 policy files from the following website: 
2. Replace the files in the following directory on the Secure Agent machine: <AGENT_HOME>\jre\lib\security\
3. Restart the Secure Agent.

Create Key Store and Trust Store Certificates for Secure Communication 
You must create the key store and trust store certificates to establish secure communication with Oracle Autonomous Data Warehouse Cloud.
Perform the following steps:
1. Extract the certificate bundle zip file that contains the keystore (ewallet.p12) and truststore (truststore.jks) files.
    Note: Ensure that the trust store and key store files are in the PKCS12(.p12) format.
2. Run the following command to convert the existing truststore.jks file into a truststore.p12 file.
    keytool -importkeystore -srckeystore truststore.jks -destkeystore truststore.p12 -srcstoretype JKS -deststoretype 
    PKCS12 -deststorepass [PASSWORD_FOR_NEW_PKCS12_TRUSTSTORE]
3. Enter the source trust store password when prompted.

Create an Oracle SSL Connection
Provide the required parameters to establish an SSL connection to Oracle Autonomous Data Warehouse Cloud.
The following table describes the Oracle connection properties:

Connection property

Description

Runtime Environment

Runtime environment that contains the Secure Agent used to access Oracle Autonomous Data Warehouse Cloud.

User Name

User name for the database login. The user name cannot contain a semicolon.

Password

Password for the database login. The password cannot contain a semicolon.

Host

Name of the machine that hosts the database server.

Port

Network port number used to connect to the database server. Default is 1521.

Service Name

Service name or System ID (SID) that uniquely identifies the Oracle database.

Specify the SID in the following format to connect to Oracle databases: SID:<ORACLE_SID>

Schema

Schema used for the Oracle connection.

Code Page

The code page of the database server. 

Encryption Method

The method that the Secure Agent uses to encrypt the data exchanged between the Secure Agent and the database server. Select SSL Auto

as the encryption method. 

Not applicable when you use the Hosted Agent.

Crypto Protocol Version

Cryptographic protocols to use when you enable SSL encryption. 

Not applicable when you use the Hosted Agent.

Validate Server Certificate

Validates the certificate that is sent by the database server. If you specify the HostNameInCertificate parameter, Secure Agent also validates the host name in the certificate. Select True to validate the server certificate. 

Not applicable when you use the Hosted Agent.

Trust Store

The location and name of the trust store file. You must specify the absolute path of the truststore (truststore.p12) file.

Not applicable when you use the Hosted Agent.

Trust Store Password

The password to access the contents of the trust store file.

Not applicable when you use the Hosted Agent.

Host Name in Certificate

Optional. Host name of the machine that hosts the secure database.

If you specify a host name, the Secure Agent validates the host name included in the connection with the host name in the SSL certificate.

Not applicable when you use the Hosted Agent.

[use CN value from tnsnames.ora file as the hostname in certificate]

Key Store

The location and the file name of the key store. You must specify the absolute path of the keystore (ewallet.p12) file.

Not applicable when you use the Hosted Agent.

Key Store Password

The password for the key store file required for secure communication.

Not applicable when you use the Hosted Agent.

Key Password

The password for the individual keys in the key store file required for secure communication. Applicable when individual keys in the key store file has a different password than the key store file.

Not applicable when you use the Hosted Agent.

 


The following image shows the configured Oracle connection properties to connect to Oracle Autonomous Data Warehouse Cloud:

Oracle-Conn.png​​

More Information
Reference
Applies To
Product:
Problem Type:
User Type:
Project Phase:
Product Version:
Database:
Operating System:
Other Software:
Attachments
Last Modified Date:6/18/2019 2:47 AMID:562281
People who viewed this also viewed

Feedback

Did this KB document help you?



What can we do to improve this information (2000 or fewer characters)