Severity :
...
High
Description:
...
This control ensures that the OCI databases is deployed in private subnet. Using private subnets for database system ensure that access to the database can only be from within the internal architecture, following security best practices.
Remediation Steps:
When creating a new database, ensure that that subnet it is being launched in is a private subnet.
Perform following to create auto scaling configuration :
Login to the OCI console at https://www.oracle.com/cloud/sign-in.html.
Create on demand DB system backup
In navigation, Click Oracle Database.
Click Bare Metal, VM, and Exadata.
Choose your Compartment.
In the list of DB systems, click the name of the system that contains the database that you want to work with.
In the list of DB systems, click the name of the system that contains the database to work with.
On the DB system details page, find the database in list of databases and click the display name.
Under Resources, click Backups.
Click Create Backup.
Create DB system from the backup created above
In navigation, Click Oracle Database.
Click Bare Metal, VM, and Exadata.
Choose your Compartment.
Click Standalone Backups under Bare Metal, VM, and Exadata.
In the list of standalone backups, find the backup you want to use to create the database.
Click the Actions menu for the backup you are interested in, and then click Create Database.
In the Create Database from Backup dialog, select Create a new DB system.
Click Create.
In the Create Database from Backup dialog, Enter following information
compartment, Name for DB system, shape type, shape, Total Node Count, Database Software Edition, Storage management software, Available storage, SSH keys, License Type.
Specify the network information enter following
Virtual Cloud Network, Client Subnet - select the private network, Network Security Groups, Hostname Prefix, Private IP address - Select the IP address which is unused in the private subnet.
Configure Advance options Fault Domain, Time Zone, Tags.
Click Next.
On the Database Information page , enter following information
Database name, Database unique name suffix, Database unique name, Database image, Password for SYS and SYSTEM, Enter the source database's TDE wallet or RMAN password.
Click Create DB System.
Once the new DB system is up and running, Terminate the old DB system.
In navigation, Click Oracle Database.
Click Bare Metal, VM, and Exadata.
Choose your Compartment.
To terminate DB system, click Actions menu and then click Terminate.
Important:
The subnet for DB system cannot overlap with 192.168.16.16/28, which is used by the Oracle Cluster ware private interconnect on the database instance.
Reference: