Oracle Cloud Infrastructure Documentation

Autonomous Database Full Feature Support

Ops Insights allows you to perform advanced collections on your Autonomous Databases via a private endpoint or through secure access from anywhere. These connection methods allows Ops Insights to connect to the database directly and enable Full Features collection, which includes SQL Explorer and ADDM Spotlight.

Prerequisites

To enable Full Features collection set on an Autonomous Database the following prerequisites must be met:
  1. Enable the Autonomous Database in Ops Insights, for more information see Enable Databases for the Service
  2. If your network requires it, create a Private Endpoint. Make sure you set up the correct network requirements for your database, including the creation of private endpoints. The following table outlines the network requirements by type of autonomous databases:
    ADB Type Access Type Network Requirements
    ADB Serverless (ADB-S) Access Anywhere None
    ADB Serverless (ADB-S) Private Endpoint Same Private Endpoint requirements as cloud databases.
    Note

    Use the ADB private endpoint VCN/Subnet instead of the database VCN/Subnet
    For more information see: Enabling Database Cloud Service Databases and Exadata Cloud Service
    ADB Serverless (ADB-S) ACL (Access Control List) Restricted The private endpoint needs to be placed in one of the whitelisted VCNs. This VCN must have access to the public ADB endpoint, typically via service gateway.

    For more information see: Configure Access Control Lists When You Provision or Clone an Instance
    ADB Dedicated (ADB-D) N/A Same requirements as cloud databases. For more information see: Enabling Database Cloud Service Databases and Exadata Cloud Service
    Note

    Dedicated Autonomous Databases require a private endpoint with DNS Proxy enabled. Ops Insights private endpoints created prior to September 2023 did not require the DNS proxy enabled. A new private endpoint may need to be created.
  3. Create the policies to allow Ops Insights service to generate autonomous database wallets, and to read the database password secret. It is recommended this step be performed automatically when setting up the Advanced Features collection in Step 4.
    Example policy to allow Ops Insights service to generate Autonomous Database wallets: 
    allow service operations-insights to read autonomous-database-family in tenancy where ALL{request.operation='GenerateAutonomousDatabaseWallet'}
    Example policy to allow Ops Insights service to read the database password secret: 
    allow service operations-insights to read secret-family in tenancy where ANY{target.secret.id='<SecretId>'}

Enable Full Features Collection For an Autonomous Database

To enable Full Features collection for an Autonomous Database follow these steps:
  1. Log into OCI, navigate to Observability and Management, then Ops Insights and click on Administration.
  2. Under Administration select Database Fleet. This will show you the Database Fleet Administration table where all your databases that have an enabled Ops Insights state are displayed. Autonomous Databases with an Active state and a Basic Feature Set are eligible for Full Feature enabling.
  3. Select an Autonomous Database you wish to enable the advanced features for and click on the three dots menu located at the right end of the table. From the menu select Enable Full Feature Set.
  4. In the Enable Full Feature Set window enter the database user name and user password secret. If your Autonomous Database is configured for private endpoint check mark Access database via private network and provide the Private endpoint. Databases configured with ACL restricted and ADB-D require private endpoint connections.

    The connect string information is automatically filled out by the service.

    If you have not previously created the policies to generate Autonomous Database wallets click on Complete the prerequisites, and then click on Apply.

    Click Enable.
    Note

    ADB-S configured with ACL and ADB-D databases may require new private endpoints that have DNS proxy enabled selected. If this parameter is not selected, you will not see existing private endpoints in the drop down menu for these types of databases.
  5. In the Database Fleet Administration table, the Autonomous Database under the Ops Insights State row will now show Full, advanced features are now being collected.