Harvest Oracle Database Hosted in OCI Public Subnet Using Private Endpoint

Oracle Database systems are protected with network security rules that restrict the network traffic to only authorized subnets and IPs. Therefore, you must create and configure a private endpoint so thatData Catalog can connect to the database system.

In this tutorial, you do the following:

  1. Create the policies needed to harvest from Oracle database systems using private endpoint.
  2. Obtain the Oracle database system access details.
  3. Create a private endpoint in Data Catalog.
  4. Attach the private endpoint to your data catalog.
  5. Create a data asset.
  6. Harvest the data asset.

For more information, see configuring a private network.

Before you Begin

To successfully perform this tutorial, you must have the following:

Set up the Resources Needed for this Tutorial

1. Create Access Policies

To configure Data Catalog to access the private network of a data source, you need access to networking and data catalog resources.

If you already have access to perform all Data Catalog and Networking operations in your required compartments, you can skip this step.

To create the policy needed to configure a private network in data catalog, perform the following steps:

  1. Open the navigation menu  and select Identity & Security. Under Identity, select Policies.
  2. In the Policies page, click Create Policy.
  3. In the Create Policy panel, enter the following details:
    • Name: Enter a unique name for the policy. The name must be unique across all policies in your tenancy. You can't change the name later. For example, data-catalog-private-endpoint-policy.
    • Description: Enter a description, such as Grant permissions to create private endpoint.
    • Compartment: Select a compartment in which you want to create the policy.
    • Policy Builder: In this section, move the slider to Show manual editor, and enter the policy rule. For example, for the data-catalog-users group, enter the following policy rule:
      allow group data-catalog-users to manage data-catalog-private-endpoints in tenancy
      Note

      This policy allows users in the data-catalog-users group to perform all data catalog private endpoint operations in any compartment in the tenancy.
    • Select Create Another Policy and enter the following policy rule:
      allow group data-catalog-users to manage virtual-network-family in tenancy
      Note

      This policy allows users in the data-catalog-users group to perform all network-related operations in any compartment in the tenancy.
  4. Click Create.
You have successfully created the policies to access the required resources for configuring a private network in Data Catalog.

2. Obtain Data Source Details

You need the private network and database connection information for the Oracle database that you want to harvest.

Obtain the following details for the on-premise Oracle database from your administrator:

  • For configuring the private network, you need the VCN and subnet name and the URL for the Oracle database.
  • For creating the data asset, you need the Oracle database host, port, and database service name or SID.
  • For adding a connection, you need the database login credentials.

3. Create a Private Endpoint

You create a Data Catalog private endpoint to configure the network access details for the Oracle database data sources you want to harvest.

4. Attach a Private Endpoint

You attach a private endpoint to a data catalog to allow data assets to be created for data sources available in the private network.

To attach a private endpoint to a data catalog, perform the following steps:

  1. Click Data Catalogs.
  2. Click the Actions menu for the data catalog where you want to attach the private endpoint and select Attach Private Endpoint.
  3. Select the private endpoint you created in the previous step and click Attach.

5. Create a Data Asset

You are now ready to register your Oracle Database system data source with Data Catalog as a data asset.

You can create a data asset by specifying the Oracle database private IP or the Oracle database FQDN.

7. Harvest the Data Asset

You're now ready to harvest your Oracle Database data asset.

To harvest your Oracle Database data asset, perform the following steps:

  1. Click Harvest on the data asset details page for the data asset.
  2. The Select Connection page displays and the default connection is selected.
  3. Click Next.
  4. The Select Data Entities page displays. View and add all the data entities you want to harvest from the Available Oracle Schema section.
    1. Click the add icon for each data entity you want to include in the harvest job.
    2. Click Add All to select all the entities for harvesting.
    3. Use the Filter Oracle Schema box to find a data entity from the available data entities.
    4. Use the page navigation icons to browse all the data entities.
    5. Click the remove icon for any selected data entity that you want to remove from the harvest job.
    6. If you need to start over, click Remove All and then start over.
    After you have reviewed the data entities you want to harvest from the Selected Oracle Schema or Data Entities section, click Next.
  5. The Create Job page displays. In the Job Name field, enter a unique name to identify the harvest job.
  6. Optionally, enter a Description.
  7. Select Run job now and then click Create Job.
    The job to harvest your Oracle Database data asset is created successfully and the Jobs tab displays. To view job details, click the job name.