Glossary

A subnet that is specific to a particular availability domain (AD). Historically, all subnets were AD-specific. Now, subnets can be either AD-specific or regional.

The trigger rule and query to evaluate, plus related configuration, such as the notification details to use when the trigger is breached. Alarms passively monitor your cloud resources by using metrics in the Monitoring service.

A credential for securing requests to the Oracle Cloud Infrastructure REST API.

A container for published Data Integration tasks to test or roll out to production.

To link a volume and instance together. Attaching lets an instance connect to and mount the volume as a hard drive.

The combination of a name and data type used to describe a data item, for example, a column in a table or a field in a file.

A token generated by Oracle Cloud Infrastructure that you use to authenticate with third-party APIs, such as a Swift client.

One or more isolated, fault-tolerant Oracle data centers that host cloud resources such as instances, volumes, and subnets. A region contains one or more availability domains.

A logical entity defined by a list of backend servers, a load balancing policy, and a health check policy.

A Compute instance that uses hosted, dedicated physical hardware, unlike virtual machines. Bare metal instances ensure a high level of security and performance.

A virtual disk that provides persistent storage space for instances in the cloud.

A service that allows you to add block storage volumes to an instance to expand the available storage on that resource.

A logical container for storing objects.

A grouping of logically related business terms in a glossary. You nest categories as needed to group terms.

A security protocol used by iSCSI for authentication between a volume and an instance.

A virtual version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

A pool of high performance computing (HPC) instances that are connected with a high-bandwidth, ultra low-latency network.

A collection of related resources that can be accessed only by groups that have been given permission by an administrator in your organization.

A service that lets you provision and manage compute hosts, known as instances.

To make an attached volume usable by an instance's guest OS.

The definition of the data to be moved. A connector specifies a source service, target service, and optional tasks.

The router at the edge of your on-premises network. The Networking service also has an object called a CPE, which is a virtual representation of your edge router. You create that object when you set up Site-to-Site VPN (an IPSec connection) between Oracle and your on-premises network.

A feature of the Oracle Console that generates information that a network engineer can use to configure the customer-premises equipment (CPE) at their end of a Site-to-Site VPN IPSec connection.

The physical cable that connects your existing network to Oracle in a FastConnect location. A cross-connect is used with FastConnect if you're using a third-party provider or are colocated with Oracle in a FastConnect location.

A link aggregation group (LAG) that contains at least one cross-connect. A cross-connect group is used with FastConnect if you're using a third-party provider or are colocated with Oracle in a FastConnect location.

The router at the edge of your on-premises network. The Networking service also has an object called a CPE, which is a virtual representation of your edge router. You create that object when you set up Site-to-Site VPN (an IPSec connection) between Oracle and your on-premises network.

Represents a data source, such as a database, an object store, a file or document store, a message queue, or an application.

A collection of data, such as a database table or view, or a single logical file. A data entity normally has many attributes that describe its data.

A timestamp-value pair for a specified metric—for example, 2018-05-10T22:19:00Z, 10.4.

A dedicated virtual machine instance running Oracle Linux, optimized for running one or more Oracle databases. A DB system is a Base Database Service resource, and is managed with the Database Service API.

Performs, checks, and identifies potential security problems based on their type and configuration.

A set of rules that provides the baselines for examining the resources and activities in a target.

A set of rules designed to detect actions on resources that could pose a security problem.

A set of rules designed to detect resource configuration settings that could pose a security problem.

A recipe provided by Cloud Guard that allows setting only the scope of resources for which a rule triggers a problem.

A recipe that's created by cloning an Oracle managed detector recipe. You can disable rules and change a rule's risk level, in addition to setting only the scope of resources for which a rule triggers a problem.

A specific definition of a class of resources with specific actions or configurations that causes a detector to report a problem. A detector recipe consists of multiple detector rules. When a rule is triggered, the detector reports a problem. Each rule in a detector recipe can be configured individually.

Configuration information that is automatically provided to the instances when they start up.

A qualifier provided in a metric definition—for example, a resource identifier (resourceId) provided in the definitions of oci_computeagent metrics.

A friendly name or description that helps you easily identify the resource.

An optional virtual router that you can add to a Virtual Cloud Network (VCN) to provide a path for private network traffic between the VCN and an on-premises network.

The result of attaching a Dynamic Routing Gateway (DRG) to a virtual cloud network (VCN). To detach the DRG from the VCN, you delete the attachment object.

The difference between the actual state of your infrastructure and the stack's last executed configuration.

A special type of Identity and Access Management (IAM) group that contains instances that match rules that you define. As a result, membership in the groups changes dynamically as matching instances are terminated or launched. These instances act as "principal" actors and can make API calls to Oracle Cloud Infrastructure services according to IAM policies that you write for the dynamic group.

An optional virtual router that you can add to a Virtual Cloud Network (VCN) to provide a path for private network traffic between the VCN and an on-premises network.

A temporary public IP address (and related properties) that exists for the life of the instance that it's assigned to. It can be assigned only to the primary private IP address on a VNIC.

Controls how file systems are accessed by NFS clients when they connect to a mount target.

A set of parameters that specify the level of access granted to NFS clients when they connect to a mount target.

A dedicated, private connection between your data center or existing network and Oracle Cloud Infrastructure. FastConnect provides higher-bandwidth options and a more reliable and consistent networking experience compared to internet-based connections.

A specific data center from which you can connect to Oracle Cloud Infrastructure by using FastConnect.

A logical grouping of hardware and infrastructure within an availability domain. Fault domains isolate resources during hardware failure or unexpected software changes.

An organized system of directories and folders in which data is stored.

The time period between each posted raw data point for a given metric. (Raw data points are posted by the metric namespace to the Monitoring service.)

A collection of business concepts in your company. A glossary contains categories and business terms.

A collection of users who all need a particular type of access to a set of resources or compartment.

An operating system installed on a cloud instance.

An operating system installed on a cloud instance.

A process that extracts technical metadata from your connected data sources into your Data Catalog repository.

A test that confirms the availability of backend servers.

A service that allows customers to rapidly scale up or down their computer infrastructure (computing, storage, or network).

The Oracle Cloud Infrastructure service that controls the authentication and authorization of users who need to use your cloud resources.

The Oracle Cloud Infrastructure service that controls the authentication and authorization of users who need to use your cloud resources

In IAM, manages users and groups, integration standards, external identities, and secure application integration.

The license type an identity domain is associated with.

A service that provides identifying credentials and authentication for federated users.

A service that provides identifying credentials and authentication for federated users.

A template of a virtual hard drive that determines the operating system and other software for an instance.

A separate version of a database. The incarnation of the database changes when you open it with the RESETLOGS option, but you can recover backups from a prior incarnation so long as the necessary redo is available.

A service that allows customers to rapidly scale up or down their computer infrastructure (computing, storage, or network).

A bare metal or virtual machine compute host. The image used to create an instance determines its operating system and other software. The shape specified during the creation process determines the number of CPUs and memory allocated to the instance.

A file that contains credentials and keys for only a single database instance.

An optional virtual router that you can add to a Virtual Cloud Network (VCN). It provides a path for network traffic between the VCN and the internet.

The time window used to convert a given set of raw data points—for example, 5 minutes.

The secure connection between a Dynamic Routing Gateway (DRG) and customer-premises equipment (CPE), consisting of multiple IPSec tunnels. The IPSec connection is one of the components that form a site-to-site VPN between a virtual cloud network (VCN) and your on-premises network.

An object that contains an IPv6 address and related properties. IPv6 addressing is supported for all commercial and government regions. Only instances in IPv6-enabled virtual cloud networks (VCNs) and IPv6-enabled subnets can have IPv6 addresses.

A unique ID assigned to an iSCSI device. You use an IQN when you connect a volume to an instance.

A TCP/IP-based standard used for communication between a volume and attached instance.

A unique ID assigned to an iSCSI device. You use an IQN when you connect a volume to an instance.

A security mechanism that consists of a public key and a private key. A key pair is required, for example, for Secure Shell (SSH) access to an instance.

An entity that checks for incoming traffic on a load balancer's public floating IP address.

A component on a Virtual Cloud Network (VCN) that routes traffic to a locally peered VCN. "Local" peering means that the two VCNs are in the same region.

The process of connecting two virtual cloud networks (VCNs) in the same region so that their resources can communicate without routing the traffic over the internet or through your on-premises network.

A component on a Virtual Cloud Network (VCN) that routes traffic to a locally peered VCN. "Local" peering means that the two VCNs are in the same region.

A reusable list of parameters that makes it easier to define detectors. For example, a predefined "Trusted Oracle IP address space" list contains all the Oracle IP addresses that you want to regard as trusted when you define rules for detectors and responders.

An alert published to all subscriptions in the specified topic. Each message is delivered at least once per subscription.

A measurement related to the health, capacity, or performance of a given resource. For example, CPU Utilization (CpuUtilization) measures the activity level from CPU, expressed as a percentage of total time.

A set of references, qualifiers, and other information provided by a metric namespace for a given metric.

Indicates the resource, service, or application that emits a metric. The namespace is provided in the metric definition. For example, the CpuUtilization metric definition emitted by the Oracle Cloud Agent software on Compute instances lists the oci_computeagent metric namespace as the source of the metric.

An individual set of aggregated data for a metric, typically specific to a resource.

A mathematical representation of your data and business process. The model catalog is a place to store, track, share, and manage models.

The syntax used for metric and alarm queries. In the Console, the MQL syntax of queries is displayed in Advanced Mode.

A directory from which a client may access a remote file system.

A network file system (NFS) endpoint that allows a file system to be accessed by clients.

The syntax used for metric and alarm queries. In the Console, the MQL syntax of queries is displayed in Advanced Mode.

An optional virtual router that you can add to your Virtual Cloud Network (VCN) to perform Network Address Translation (NAT). A NAT gateway gives cloud resources without public IP addresses access to the internet without exposing those resources to incoming internet connections.

One method for implementing security rules in a Virtual Cloud Network (VCN). A network security group consists of a set of resources (VNICs or resources with VNICs) and security rules that apply to those resources.

A group of IP addresses that can be used in policies to restrict access.

Protocol and other details for sending messages when the alarm transitions to another state, such as from OK to FIRING.

One method for implementing security rules in a Virtual Cloud Network (VCN). A network security group consists of a set of resources (VNICs or resources with VNICs) and security rules that apply to those resources.

A DNS message type received by the DNS resolver when a request to resolve a domain is sent to the DNS and can't be resolved to an IP address.

Data stored in Object Storage. Any type of data, regardless of content type, is stored as an object. The object is composed of the object itself and metadata about the object. Each object is stored in a bucket.

An Oracle-assigned unique ID for a cloud resource. This ID is included as part of the resource's information in both the Console and API.

A single-use Console password that Oracle assigns to a new user, or to an existing user who requested a password reset.

An Oracle-assigned unique ID for a cloud resource. This ID is included as part of the resource's information in both the Console and API.

A single-use Console password that Oracle assigns to a new user, or to an existing user who requested a password reset.

An Identity and Access Management (IAM) document that specifies who has what type of access to your resources. Policy can refer to several types of documents: an individual statement written in the policy language, a collection of statements in a single named "policy" document, and the overall body of policies that your organization uses to control access to resources.

A security requirement in a security zone recipe. If a resource operation in a security zone violates this requirement, then the operation is denied.

An individual statement written in the policy language. Policies can contain one or more statements. Each statement gives a group a certain type of access to certain resources in a particular compartment.

The private IP address that is automatically created and assigned to a VNIC when an instance is created.

The VNIC that is automatically created and attached to an instance when it is created.

Network information for connecting to a nonpublic resource. Allows Resource Manager to remotely access cloud resources that are not available through the Internet.

An object that contains a private IPv4 address and related properties, such as a hostname for DNS. Each instance automatically has a primary private IP address, and you can add secondary ones.

One of the ways to use FastConnect. Private peering lets you extend your existing infrastructure into a Virtual Cloud Network (VCN) in Oracle Cloud Infrastructure (for example, to implement a hybrid cloud). Communication across the connection is with IPv4 private addresses (typically those specified in RFC 1918).

A subnet in which instances are not allowed to have public IP addresses

A FastConnect virtual circuit that supports private peering.

Any action or setting on a resource that could potentially cause a security problem. Problems are created when Cloud Guard discovers a deviation from a detector rule. Problems are defined by the type of detector that creates them (activity or configuration). Each problem contains data about the specific type of issue that was found.

Problems may be resolved, dismissed, or remediated. Cloud Guard monitors your Oracle Cloud Infrastructure tenancy's network activity to identify and resolve problems.

An object that contains a public IP address and related properties. You control whether each private IP address on an instance has an assigned public IP address. The two types of public IP addresses are reserved and ephemeral.

One of the ways to use FastConnect. Public peering lets your on-premises network access public services in Oracle Cloud Infrastructure —for example, Object Storage, the Console, and APIs, or public load balancers in your VCN— without using the internet. Communication across the connection is with IPv4 public IP addresses.

Without FastConnect, the traffic destined for public IP addresses would be routed over the internet. With FastConnect, that traffic goes over your private physical connection.

A subnet in which instances are allowed to have public IP addresses. When you launch an instance in a public subnet, you specify whether the instance should have a public IP address.

A FastConnect virtual circuit that supports public peering.

The expression to evaluate for returning aggregated data. A valid query includes a metric, statistic, and interval. In the Console, you can view a query in Basic Mode or Advanced Mode. The latter displays the Monitoring Query Language (MQL) syntax.

The per-unit rate that a customer is charged.

A logical collection of regions. Realms are isolated from each other and don't share any data. Your tenancy exists in a single realm and can access the regions in that realm.

A collection of availability domains located in a single geographic location.

A subnet that spans all the availability domains in the region. Oracle recommends using regional subnets because they are more flexible and make it easier to implement failover across availability domains.

A file that contains the credentials and keys for all Autonomous Databases in a specified region.

A component on a dynamic routing gateway that routes traffic to a remotely peered Virtual Cloud Network (VCN). "Remote" peering means that the two VCNs are in different regions.

The process of connecting two virtual cloud networks (VCNs) in different regions so that their resources can communicate without routing their traffic over the internet or through your on-premises network.

A public IP address (and related properties) that you create in your tenancy and assign to your instances in a given region as needed. A reserved public IP address persists in your tenancy until you delete it. It can be assigned to any private IP on a given VNIC, not just the primary private IP.

The period between time windows, or the regularity at which time windows shift—for example, 1 minute.

The cloud objects that you create and use when interacting with Oracle Cloud Infrastructure.

An action that Cloud Guard can perform when a detector identifies a problem. The available actions are resource-specific.

The action or set of actions to perform in response to a problem that a detector identifies.

A recipe provided by Cloud Guard. You can't disable the rules in this type of recipe.

A recipe that's created by cloning an Oracle managed recipe. You can disable individual rules and change a rule's risk level.

A rule that defines the specific actions to take when a detector identifies a problem. If any one responder rule is triggered, it triggers the responder. Each rule in a responder recipe can be configured individually.

A virtual route table for your Virtual Cloud Network (VCN) that maps the traffic from subnets through gateways to external destinations.

A component on a dynamic routing gateway that routes traffic to a remotely peered Virtual Cloud Network (VCN). "Remote" peering means that the two VCNs are in different regions.

An additional private IP address that you add to a VNIC on an instance. Each VNIC automatically comes with a primary private IP address that can't be removed.

An additional virtual network interface card (VNIC) that you add to an instance. Each instance automatically comes with a primary VNIC that can't be removed.

A method for implementing security in a Virtual Cloud Network (VCN). A security list consists of security rules that apply to all resources in any subnet that uses the security list.

Virtual firewall rules for your Virtual Cloud Network (VCN). Each security rule specifies a type of ingress or egress traffic allowed in or out of a resource or VNIC.

An association between a compartment and a security zone recipe. Resource operations in a security zone are validated against all policies in the recipe. If any policy is violated, then the operation is denied.

A collection of security zone policies that enforce security best practices.

An optional virtual router that you can add to your Virtual Cloud Network (VCN). The gateway enables on-premises hosts or VCN hosts to privately access Oracle services (such as Object Storage and Autonomous Database) without exposing the resources to the public internet.

A template that determines the number of CPUs, amount of memory, and other resources that are allocated to a Compute instance.

The service that contains the data to be moved according to specified tasks—for example, Logging.

The part of a policy that gives a group a certain type of access to certain resources in a particular compartment.

The aggregation function applied to the given set of raw data points—for example, SUM.

A subdivision of your Virtual Cloud Network (VCN). Subnets separate your network into multiple smaller and distinct networks.

An endpoint for a topic, typically a URL or email address. Published messages are sent to each subscription for a topic.

A configuration to avoid publishing messages during the specified time range. Suppression is useful for suspending alarm notifications during system maintenance.

Deprecated. Use an auth token to authenticate with your Swift client in Object Storage.

Free-form labels or keywords that you create to logically identify data objects. Tags help in metadata classification and discovery. You create tags for data assets, data entities, and attributes. Using tags, you can search for all data objects with a specific tag name.

Defines the scope checked by Cloud Guard. The scope is tied to the compartment where the target is defined and all the child compartments from that point until another target is encountered, which takes over from that point into any descending compartments.

The service that receives data from the source, according to specified tasks. A given target service processes, stores, or delivers received data—the Functions service processes the received data; the Logging Analytics, Monitoring, Object Storage, and Streaming services store the data; and the Notifications service delivers the data.

A resource that specifies a set of actions to perform on data.

Optional filtering to apply to the data before moving it from the source service to the target service.

A runtime artifact that represents the execution of a Data Integration task.

A secure and isolated partition within Oracle Cloud Infrastructure (OCI) where you can create, organize, and administer your cloud resources. When you sign up for OCI, a tenancy is created for your company. Tenancy also refers to the root compartment that contains all of your organization's compartments and other OCI resources.

The name assigned to a particular company's or organization's overall environment. Users provide their tenant when signing in to the Console.

The definition of a business concept as agreed on by different stakeholders in your company. You use terms to organize your data entities and attributes.

A communication channel for sending messages to the subscriptions in a topic.

A network setup in which your on-premises network uses a connected Virtual Cloud Network (VCN) to reach Oracle resources or services beyond that VCN. You connect the on-premises network to the VCN with a FastConnect private virtual circuit or VPN Connect. Then you configure the VCN routing so that traffic transits through the VCN to its destination beyond the VCN.

You can use transit routing to access multiple VCNs from your on-premises network over a single FastConnect or VPN Connect connection. Or, you can use it to give your on-premises network private access to Oracle services so that on-premises hosts use their private IP addresses and the traffic doesn't go over the internet.

The condition that must be met for a connector to run. Currently, the trigger is continuous; that is, connectors run continuously.

The condition that must be met for an alarm to be in the firing state. A trigger rule can be based on a threshold or absence of a metric.

An individual employee or system that needs to manage or use your company's Oracle Cloud Infrastructure resources.

A virtual version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

An isolated network path that runs over one or more physical network connections to provide a single, logical connection between the edge of your existing network and Oracle Cloud Infrastructure. Virtual circuits are used with Oracle Cloud Infrastructure FastConnect.

A virtualized version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

A software-based emulation of a full computer that runs within a physical host computer.

Enables an instance to connect to a Virtual Cloud Network (VCN) and determines how the instance connects with endpoints inside and outside the VCN. Each instance automatically comes with a primary VNIC, and you can add secondary ones. Other types of cloud resources, such as load balancers and DB systems, also automatically get a VNIC when they are created.

A software-based emulation of a full computer that runs within a physical host computer.

Enables an instance to connect to a Virtual Cloud Network (VCN) and determines how the instance connects with endpoints inside and outside the VCN. Each instance automatically comes with a primary VNIC, and you can add secondary ones. Other types of cloud resources, such as load balancers and DB systems, also automatically get a VNIC when they are created.

A detachable block storage device that lets you dynamically expand the storage capacity of an instance.

An object that reports on the current state of an asynchronous service request.

The container for all Data Integration resources—such as projects, folders, data assets, tasks, data flows, and applications—associated with a data integration solution.