Oracle US Government Cloud
This topic contains information specific to the Oracle US Government Cloud.
Authorizations
Oracle US Government Cloud has obtained the following authorizations:
- FedRAMP High
- DISA Impact Level 4
See also For All US Government Cloud Customers.
Regions
The region names and identifiers for Oracle US Government Cloud are shown in the following table:
| Region Name | Region Identifier | Region Location | Region Key | Realm Key | Availability Domains |
|---|---|---|---|---|---|
| US Gov East (Ashburn) | us-langley-1 | Ashburn, VA | LFI | OC2 | 1 |
| US Gov West (Phoenix) | us-luke-1 | Phoenix, AZ | LUF | OC2 | 1 |
After your tenancy is created in one of these regions, you can subscribe to the other region. Tenancies in the FedRAMP-authorized regions can't subscribe to the commercial regions, or to the Oracle US Defense Cloud regions. For information about subscribing to a region, see Managing Regions.
Console Sign-in URLs
To sign in to the Oracle US Government Cloud, enter one of the following URLs in a supported browser:
When you're signed in to the Console for one of the US Government Cloud regions, the browser times out after 15 minutes of inactivity, and you need to sign in again to use the Console.
Oracle US Government Cloud API Reference and Endpoints
Oracle US Government Cloud has these APIs and corresponding regional endpoints:
- https://analytics.us-langley-1.ocp.oraclegovcloud.com
- https://analytics.us-luke-1.ocp.oraclegovcloud.com
Oracle Analytics Cloud uses identity domains in the IAM service to manage users. Identity domains are only available for Oracle US Government Cloud tenancies created after January 17, 2023. If you're not sure if your tenancy supports identity domains, use the steps described in Do You Have Access to Identity Domains? to find out.
For more information, see Oracle Analytics Cloud on US Government Cloud - Tenancies on US Government Cloud Created Before January 2023 .
- https://announcements.us-langley-1.oraclegovcloud.com
- https://announcements.us-luke-1.oraclegovcloud.com
- https://anomalydetection.aiservice.us-langley-1.oci.oraclegovcloud.com
- https://anomalydetection.aiservice.us-luke-1.oci.oraclegovcloud.com
- https://apm-config.us-langley-1.oci.oraclegovcloud.com
- https://apm-config.us-luke-1.oci.oraclegovcloud.com
- https://apm-cp.us-langley-1.oci.oraclegovcloud.com
- https://apm-cp.us-luke-1.oci.oraclegovcloud.com
- https://apm-synthetic.us-langley-1.oci.oraclegovcloud.com
- https://apm-synthetic.us-luke-1.oci.oraclegovcloud.com
- https://apm-trace.us-langley-1.oci.oraclegovcloud.com
- https://apm-trace.us-luke-1.oci.oraclegovcloud.com
- https://apigateway.us-langley-1.oci.oraclegovcloud.com
- https://apigateway.us-luke-1.oci.oraclegovcloud.com
- https://artifacts.us-langley-1.oci.oraclegovcloud.com
- https://artifacts.us-luke-1.oci.oraclegovcloud.com
- https://osmh.us-langley-1.oci.oraclegovcloud.com
- https://osmh.us-luke-1.oci.oraclegovcloud.com
- https://autoscaling.us-langley-1.oci.oraclegovcloud.com
- https://autoscaling.us-luke-1.oci.oraclegovcloud.com
- https://bastion.us-langley-1.oci.oraclegovcloud.com
- https://bastion.us-luke-1.oci.oraclegovcloud.com
- https://bigdataservice.us-langley-1.oci.oraclegovcloud.com
- https://bigdataservice.us-luke-1.oci.oraclegovcloud.com
- https://usage.us-langley-1.oci.oraclegovcloud.com
- https://usage.us-luke-1.oci.oraclegovcloud.com
- https://certificatesmanagement.us-langley-1.oci.oraclegovcloud.com
- https://certificatesmanagement.us-luke-1.oci.oraclegovcloud.com
- https://certificates.us-langley-1.oci.oraclegovcloud.com
- https://certificates.us-luke-1.oci.oraclegovcloud.com
- https://cloudguard-cp-api.us-langley-1.oci.oraclegovcloud.com
- https://cloudguard-cp-api.us-luke-1.oci.oraclegovcloud.com
- https://optimizer.us-langley-1.oci.oraclegovcloud.com
- https://optimizer.us-luke-1.oci.oraclegovcloud.com
- https://service-connector-hub.us-langley-1.oci.oraclegovcloud.com
- https://service-connector-hub.us-luke-1.oci.oraclegovcloud.com
- https://compute-containers.us-langley-1.oci.oraclegovcloud.com
- https://compute-containers.us-luke-1.oci.oraclegovcloud.com
The Networking, Compute, and Block Volume services are accessible with the following API:
- https://iaas.us-langley-1.oraclegovcloud.com
- https://iaas.us-luke-1.oraclegovcloud.com
- https://datacatalog.us-langley-1.oci.oraclegovcloud.com
- https://datacatalog.us-luke-1.oci.oraclegovcloud.com
- https://dataflow.us-langley-1.oci.oraclegovcloud.com
- https://dataflow.us-luke-1.oci.oraclegovcloud.com
- https://dataintegration.us-langley-1.oci.oraclegovcloud.com
- https://dataintegration.us-luke-1.oci.oraclegovcloud.com
- https://datalabeling-dp.us-langley-1.oci.oraclegovcloud.com
- https://datalabeling-dp.us-luke-1.oci.oraclegovcloud.com
- https://datalabeling-cp.us-langley-1.oci.oraclegovcloud.com
- https://datalabeling-cp.us-luke-1.oci.oraclegovcloud.com
- https://datasafe.us-langley-1.oci.oraclegovcloud.com
- https://datasafe.us-luke-1.oci.oraclegovcloud.com
- https://datascience.us-langley-1.oci.oraclegovcloud.com
- https://datascience.us-luke-1.oci.oraclegovcloud.com
- https://database.us-langley-1.oraclegovcloud.com
- https://database.us-luke-1.oraclegovcloud.com
You can track the progress of long-running Database operations with the Work Requests API.
- https://dbmgmt.us-langley-1.oci.oraclegovcloud.com
- https://dbmgmt.us-luke-1.oci.oraclegovcloud.com
- https://odms.us-langley-1.oci.oraclegovcloud.com
- https://odms.us-luke-1.oci.oraclegovcloud.com
- https://devops.us-langley-1.oci.oraclegovcloud.com
- https://devops.us-luke-1.oci.oraclegovcloud.com
- https://digitalassistant.us-langley-1.oci.oraclegovcloud.com
- https://digitalassistant.us-luke-1.oci.oraclegovcloud.com
This information is for private DNS only. Public DNS isn't available in government realms.
- https://dns.us-langley-1.oraclegovcloud.com
- https://dns.us-luke-1.oraclegovcloud.com
- https://ctrl.email.us-langley-1.oci.oraclegovcloud.com
- https://ctrl.email.us-luke-1.oci.oraclegovcloud.com
- https://events.us-langley-1.oci.oraclegovcloud.com
- https://events.us-luke-1.oci.oraclegovcloud.com
- https://filestorage.us-langley-1.oraclegovcloud.com
- https://filestorage.us-luke-1.oraclegovcloud.com
- https://functions.us-langley-1.oci.oraclegovcloud.com
- https://functions.us-luke-1.oci.oraclegovcloud.com
- https://goldengate.us-langley-1.oci.oraclegovcloud.com
- https://goldengate.us-luke-1.oci.oraclegovcloud.com
- https://generic.us-langley-1.oci.oraclegovcloud.com
- https://generic.us-luke-1.oci.oraclegovcloud.com
- https://identity.us-langley-1.oraclegovcloud.com
- https://identity.us-luke-1.oraclegovcloud.com
The IAM service supports identity domains for US Government Cloud tenancies created after January 17, 2023. Identity domains are used to manage users and groups, integration standards, external identities, and secure application integration through Oracle Single Sign-on (SSO) configuration. If you're not sure if your tenancy supports identity domains, use the steps described in Do You Have Access to Identity Domains? to find out.
To use identity domains in tenancies created before this date, you need to wait until your tenancy is upgraded to include identity domains.
Use the Endpoint of Your Home Region for All IAM API Calls
When you sign up for Oracle Cloud Infrastructure, Oracle creates a tenancy for you in one region. This is your home region. Your home region is where your IAM resources are defined. When you subscribe to a new region, your IAM resources are replicated in the new region, however, the master definitions reside in your home region and can only be changed there. Make all IAM API calls against your home region endpoint. The changes automatically replicate to all regions. If you try to make an IAM API call against a region that's not your home region, you will receive an error. See What is the tenancy home region? How do I find my tenancy home region?
- https://javamanagement.us-langley-1.oci.oraclegovcloud.com
- https://javamanagement.us-luke-1.oci.oraclegovcloud.com
- https://kms.us-langley-1.oraclegovcloud.com
- https://kms.us-luke-1.oraclegovcloud.com
In addition to these endpoints, each vault has a unique endpoint for create, update, and list operations for keys. This endpoint is referred to as the control plane URL or management endpoint. Each vault also has a unique endpoint for cryptographic operations. This endpoint is known as the data plane URL or the cryptographic endpoint.
- https://containerengine.us-langley-1.oci.oraclegovcloud.com
- https://containerengine.us-luke-1.oci.oraclegovcloud.com
- https://language.aiservice.us-langley-1.oci.oraclegovcloud.com
- https://language.aiservice.us-luke-1.oci.oraclegovcloud.com
- https://licensemanager.us-langley-1.oci.oraclegovcloud.com
- https://licensemanager.us-luke-1.oci.oraclegovcloud.com
- https://loganalytics.us-langley-1.oraclegovcloud.oci.com
- https://loganalytics.us-luke-1.oraclegovcloud.oci.com
Sample Log Data isn't supported in US Government Cloud.
- https://ingestion.logging.us-langley-1.oraclegovcloud.com
- https://ingestion.logging.us-luke-1.oraclegovcloud.com
- https://logging.us-langley-1.oraclegovcloud.com
- https://logging.us-luke-1.oraclegovcloud.com
- https://logging.us-langley-1.oraclegovcloud.com
- https://logging.us-luke-1.oraclegovcloud.com
- https://managed-access.us-langley-1.oraclegovcloud.com
- https://managed-access.us-luke-1.oraclegovcloud.com
- https://management-agent.us-langley-1.oraclegovcloud.com
- https://management-agent.us-luke-1.oraclegovcloud.com
- https://marketplace.us-langley-1.oci.oraclegovcloud.com
- https://marketplace.us-luke-1.oci.oraclegovcloud.com
- https://telemetry-ingestion.us-langley-1.oraclegovcloud.com
- https://telemetry-ingestion.us-luke-1.oraclegovcloud.com
- https://telemetry.us-langley-1.oraclegovcloud.com
- https://telemetry.us-luke-1.oraclegovcloud.com
- https://network-firewall.us-langley-1.oci.oraclegovcloud.com
- https://network-firewall.us-luke-1.oci.oraclegovcloud.com
- https://network-load-balancer-api.us-langley-1.oci.oraclegovcloud.com
- https://network-load-balancer-api.us-luke-1.oci.oraclegovcloud.com
- https://nosql.us-langley-1.oci.oraclegovcloud.com
- https://nosql.us-luke-1.oci.oraclegovcloud.com
- https://notification.us-langley-1.oraclegovcloud.com
- https://notification.us-luke-1.oraclegovcloud.com
The source service must be available in US Government Cloud regions for messages to be successfully sent through the Notifications service. If the source service isn't available in these regions, then the message isn't sent. For a list of unavailable services, see Services Not Supported in Oracle US Government Cloud.
Both Object Storage and Archive Storage are accessible with the following APIs:
- https://objectstorage.us-langley-1.oraclegovcloud.com
- https://objectstorage.us-luke-1.oraclegovcloud.com
- https://<object_storage_namespace>.compat.objectstorage.us-langley-1.oraclegovcloud.com
- https://<object_storage_namespace>.compat.objectstorage.us-luke-1.oraclegovcloud.com
See Understanding Object Storage Namespaces for information regarding how to find your Object Storage namespace.
- https://swiftobjectstorage.us-langley-1.oraclegovcloud.com
- https://swiftobjectstorage.us-luke-1.oraclegovcloud.com
- https://opensearch.us-langley-1.oci.oraclegovcloud.com
- https://opensearch.us-luke-1.oci.oraclegovcloud.com
- https://operator-access-control.us-langley-1.oci.oraclegovcloud.com
- https://operator-access-control.us-luke-1.oci.oraclegovcloud.com
- https://operationsinsights.us-langley-1.oci.oraclegovcloud.com
- https://operationsinsights.us-luke-1.oci.oraclegovcloud.com
- https://ocvps.us-langley-1.oci.oraclegovcloud.com
- https://ocvps.us-luke-1.oci.oraclegovcloud.com
- https://cp.oce.us-langley-1.oci.oraclegovcloud.com
- https://cp.oce.us-luke-1.oci.oraclegovcloud.com
- https://integration.us-langley-1.oci.oraclegovcloud.com
- https://integration.us-luke-1.oci.oraclegovcloud.com
For more information, see Using Oracle Integration 3 on Oracle Cloud Infrastructure US Government Cloud.
- https://organizations.us-langley-1.oci.oraclegovcloud.com
- https://organizations.us-luke-1.oci.oraclegovcloud.com
- https://osms.us-langley-1.oci.oraclegovcloud.com
- https://osms.us-luke-1.oci.oraclegovcloud.com
- https://osmh.us-langley-1.oci.oraclegovcloud.com
- https://osmh.us-luke-1.oci.oraclegovcloud.com
- https://process.us-langley-1.oci.oraclegovcloud.com
- https://process.us-luke-1.oci.oraclegovcloud.com
- https://resourcemanager.us-langley-1.oci.oraclegovcloud.com
- https://resourcemanager.us-luke-1.oci.oraclegovcloud.com
- https://vss-cp-api.us-langley-1.oci.oraclegovcloud.com
- https://vss-cp-api.us-luke-1.oci.oraclegovcloud.com
- https://speech.aiservice.us-langley-1.oci.oraclegovcloud.com
- https://speech.aiservice.us-luke-1.oci.oraclegovcloud.com
- https://stack-monitoring.us-langley-1.oci.oraclegovcloud.com
- https://stack-monitoring.us-luke-1.oci.oraclegovcloud.com
- https://streaming.us-langley-1.oci.oraclegovcloud.com
- https://streaming.us-luke-1.oci.oraclegovcloud.com
- https://api-threatintel.us-langley-1.oci.oraclegovcloud.com
- https://api-threatintel.us-luke-1.oci.oraclegovcloud.com
- https://kms.us-langley-1.oraclegovcloud.com
- https://kms.us-luke-1.oraclegovcloud.com
- https://vaults.us-langley-1.oraclegovcloud.com
- https://vaults.us-luke-1.oraclegovcloud.com
- https://secrets.us-langley-1.oraclegovcloud.com
- https://secrets.us-luke-1.oraclegovcloud.com
- https://vision.aiservice.us-langley-1.oci.oraclegovcloud.com
- https://vision.aiservice.us-luke-1.oci.oraclegovcloud.com
- https://visualbuilder.us-langley-1.ocp.oraclegovcloud.com
- https://visualbuilder.us-luke-1.ocp.oraclegovcloud.com
- https://vbstudio.us-langley-1.ocp.oraclegovcloud.com
- https://vbstudio.us-luke-1.ocp.oraclegovcloud.com
- https://waf.us-langley-1.oci.oraclegovcloud.com
- https://waf.us-luke-1.oci.oraclegovcloud.com
- https://iaas.us-langley-1.oraclegovcloud.com
- https://iaas.us-luke-1.oraclegovcloud.com
Oracle YUM Repo Endpoints
The Oracle yum repository regional endpoints for Oracle US Government Cloud are shown in the following table
| Region | YUM Server Endpoint |
|---|---|
| US Gov East (Ashburn) |
|
| US Gov West (Phoenix) |
|
SMTP Authentication and Connection Endpoints
Email Delivery only supports the AUTH PLAIN command when using SMTP authentication. If the sending application isn't flexible with the AUTH command, an SMTP proxy/relay can be used. For more information about the AUTH command, see AUTH Command and its Mechanisms.
| Region | SMTP Connection Endpoint |
|---|---|
| US Gov East (Ashburn) | smtp.email.us-langley-1.oci.oraclegovcloud.com |
| US Gov West (Phoenix) | smtp.email.us-luke-1.oci.oraclegovcloud.com |
SPF Record Syntax
An SPF record is a TXT record on the sending domain that authorizes Email Delivery IP addresses to send on your behalf. SPF
is required for subdomains of oraclegovcloud.com and recommended in
other cases. The SPF record syntax for each sending region is shown in the following
table:
| Realm Key | SPF Record |
|---|---|
| OC2 | v=spf1 include:rp.email.oci.oraclegovcloud.com
~all |
Services Not Supported in Oracle US Government Cloud
The following services aren't available or not supported for tenancies in the Oracle US Government Cloud.
This list isn't exhaustive. Full Stack Disaster Recovery services and features are not available. Other services and features might also be unavailable or unsupported.
Networking services and features not available:
- DNS Zone Management - public DNS zones (private DNS zones are supported)
- Traffic Management
- Network Visualizer - export map data
Oracle Database services and features not available:
- Data Catalog - Data asset of type MySQL
Storage services and features not available:
- In-transit encryption for bare metal instances.
- The Ultra High Performance level for block volumes and boot volumes.
- File Storage LDAP authorization and Kerberos authentication.
Analytics & AI services not available:
- Fusion Data Intelligence
Identity & Security services not available:
- Compliance Documents
- SMS-based Notifications
Observability & Management services and features not available:
- Health Checks
- Logging Analytics - Sample Log Data
- Management Agent - Enabling Management Agent from Compute instances. As an alternative, you can manually install the Management Agent. See Install Management Agents for more information.
Governance & Administration features not supported:
- Auto-federation with Oracle Identity Cloud Service
Integration with Oracle SaaS and PaaS services, including those listed here: Get Started with Oracle Platform Services
Oracle Cloud Infrastructure Free Tier, including promotional trial and Always Free offers aren't available in US Government Cloud regions.
Additional Information for Oracle US Government Cloud Customers
- Shared Responsibilities
- Setting Up an Identity Provider for Your Tenancy
- Using a Common Access Card/Personal Identity Verification Card to Sign in to the Console
- IPv6 Support for Virtual Cloud Networks
- Setting Up Secure Access for Compute Hosts
- Enabling FIPS Mode for Your Operating System
- Required Site-to-Site VPN Parameters for Government Cloud
- Oracle's BGP ASN
- Requesting a Service Limit Increase for US Government Cloud and US Defense Cloud Tenancies