Identity is the new perimeter BUT, you still need a firewall!

Identity is the new perimeter. Sounds familiar??? In a traditional on-prem world, all the workload had one thing in common. They were all part of a large private network. You could shield that common attack vector (network) with strong security policies using both WAF (Web Application Firewall) and network firewall. As the workload moved to […]

3 Steps to kick-start OCI monitoring in CASB

Introduction Oracle CASB Cloud Service is used for security monitoring the cloud footprint of SaaS, PaaS and IaaS components. CASB, when configured to monitor Oracle Cloud Infrastructure (OCI), can detect risk, anomalies and potential security violations. In OCI, the target of CASB monitoring is a compartment. Once an OCI compartment is configured in CASB, out-of-box […]

Oracle Cloud Infrastructure (OCI) REST call walkthrough with curl

  Introduction This post will walkthrough the elements required, and purpose of each, to make a curl request to Oracle Cloud Infrastructure (OCI) REST services. While there are a variety of tools offered that make this task far easier than manually constructing a curl request, the purpose of this post is to provide an explanation […]

Importing into the Autonomous Data Warehouse using Oracle Data Pump

Introduction This post details the steps required to import into the Autonomous Data Warehouse (ADW) using the Oracle Data Pump Import utility on Oracle Cloud Infrastructure (OCI). Versions OCI Compute    Oracle-Linux-7.6-2018.11.19-0 Instant Client     18.3.0.0.0 for Linux x86-64 (64-bit) ADW DB            18.0.3.3 SQL Developer 18.3.0.277 Assumptions An Oracle Cloud […]

Getting Started Using Terraform with OCI

Introduction Standing up infrastructure requires building networks, servers and storage entailing complex build and configuration management processes. Traditionally done with scripts or even manually, Terraform gives you a new alternative. Using Terraform you can write a declarative description of your infrastructure. Using the Terraform “compiler” the declaration is converted to a build plan and then […]

Performance of MFT Cloud Service (MFTCS) with File Storage Service (FSS) using a Hybrid Solution Architecture in Oracle Cloud Infrastructure (OCI)

Executive Overview MFT Cloud Service clusters in Oracle Cloud Infrastructure Classic (OCI-C) are provisioned with database file storage system (DBFS) for shared storage as discussed in one of our earlier blogs[1]. In Oracle Cloud Infrastructure (OCI), customers also have the option of using File Storage Service (FSS) for shared storage. FSS can be used for […]

Disaster Recovery with Oracle Kubernetes Engine

Overview of Scenarios This document describes how applications that are built on Oracle Kubernetes Engine (OKE) can continue operating even if an entire geographic region of Oracle Cloud Infrastructure (OCI) is lost. A basic knowledge of OCI is assumed. Each scenario builds upon the previous ones, describing the incremental design differences that arise in more […]

Hybrid DNS in OCI

It’s a common scenario to have DNS name resolution between FQDNs in OCI and your on-prem… or between multiple OCI VCNs.  How do we make this happen today?  By using a hybrid DNS solution, of course! What is a hybrid DNS solution?  It’s essentially a DNS overlay on top of the built-in OCI VCN DNS.  […]

Achieving DR in the cloud using Oracle Dyn

Recently a colleague of mine (Kumar) and myself were facing a scenario where we needed to provide a solution providing disaster recovery (DR) functionality between two OCI regions.  It is a fairly common requirement to support some sort of disaster recovery (DR) between different geographical locations.  It has been a common practice in traditional enterprise […]

Using 3rd-party security virtual appliances in OCI

OCI offers a very robust and high-performance network firewall that’s integrated into the very core of the Virtual Cloud Network (VCN).  For some customers, this is sufficient, while other customers need more from their cloud security than is provided natively with the OCI VCN.  Some environments need application-level inspection (such as URL filtering, malware inspection, […]

Restrict Root Compartment Access with Oracle Cloud Infrastructure Policies

The OCI Administrators group grants manage acess to all resources in all compartments including the root compartment.  So, any member of this group is considered a super user.  Is a normal practice to keep Administrators members to a small number of users and create additional groups/policies to restrict access to specific compartments. If there’s a […]

Setup Oracle API Gateway on OCI-Classic in Oracle Public Cloud

This blog provides steps to get Oracle API Gateway up and running on Oracle cloud- OCI Classic VM We will see following steps: 1. Create compute instance on Oracle Cloud Infrastructure Classic (OCI-classic) 2. Create Logical gateway in API management console and Assign grants to add nodes 3. Connect OCI-classic instance using SSH and copy […]

Creating an instance in Oracle Public Cloud via REST API’s – a usable example

Introduction This post will walk a user through creating a storage volume, and an instance with that volume attached in the Oracle Public Cloud(OPC) via REST API’s. While this article will use curl to demonstrate the calls, these steps can be replicated with any REST client of your choosing.   Prerequisites In order to execute […]

Integrating with Taleo Enterprise Edition using Integration Cloud Service (ICS)

Introduction Integration Cloud Service (ICS) provides Oracle SaaS customers with pre-defined to connections to most SaaS subscriptions and zero-code integration features to quickly connect SaaS applications. Oracle Taleo provides talent management functions as Software as a service (SaaS). Taleo often needs to be integrated with other human resource systems. For customers looking to use ICS for […]

Oracle ATG Commerce IaaS/Cloud provisioning

Introduction The Oracle ATG Commerce provisioning tool set allows for the rapid deployment of the ATG Commerce stack. The tool set contains 3 distinct components that can be used independently, or together to create a Cloud provisioning, software installation and software configuration solution. The Oracle ATG Commerce stack is comprised of several integrated software packages. […]

Cloud Security: Seamless Federated SSO for PaaS and Fusion-based SaaS

Introduction Oracle Fusion-based SaaS Cloud environments can be extended in many ways. While customization is the standard activity to setup a SaaS environment for your business needs, chances are that you want to extend your SaaS for more sophisticated use cases. In general this is not a problem and Oracle Cloud offers a great number […]

Cloud Security: Using Fusion Application Web Services with Message Protection

Introduction Oracle Fusion Applications offers a number of WebServices to allow other applications to incorporate the Fusion Applications functionality. To prevent data leakage, these WebServices follow a common security pattern that requires access authentication and message protection using message signing and/or message encryption. To use such a WebService, the WSDL of each service provides all […]

End-to-end Compute Cloud Instance Management with Python and Ansible

This is a follow-up to my previous post “Automate Oracle Compute Cloud Service Management with Python Requests“, which allows you to create and configure an Oracle Compute instance in one step. However, my previous post does not allow you to log into the newly created instance and perform further configuration inside the instance. This post […]