Initial review

Author: FalcoVerus

data-platform/exadata-cloud-at-customer/README.md

@@ -0,0 +1,33 @@
+# Exadata Cloud@Customer
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Main Oracle Product Page](https://www.oracle.com/uk/engineered-systems/exadata/cloud-at-customer/)
+
+- [Oracle Exadata Database Service on Cloud@Customer X10M datasheet](https://www.oracle.com/a/ocom/docs/engineered-systems/exadata/exadb-cc-x10m-ds.pdf)
+
+- [Documentation Home](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/)
+
+- [What’s New in Oracle Exadata Database Service on Cloud@Customer Gen2](https://docs.oracle.com/en-us/iaas/exadata/doc/ecc-whats-new-in-exadata-cloud-at-customer-gen2.html)
+
+- [What’s New in ADB-D on Exadata Cloud@Customer](https://docs.oracle.com/en-us/iaas/exadata/doc/adb-okv-integration.html)
+
+![Alt text](Specialistdivider1small.jpg?raw=true "Subsections")
+
+- [ExaCC Infra](https://github.com/oracle-devrel/technology-engineering/tree/main/data-platform/exadata-cloud-at-customer/exacc-infra)
+
+- [ExaCC Network](https://github.com/oracle-devrel/technology-engineering/tree/main/data-platform/exadata-cloud-at-customer/exacc-network)
+
+- [ExaCC Security](https://github.com/oracle-devrel/technology-engineering/tree/main/data-platform/exadata-cloud-at-customer/exacc-security)
+
+- [ExaCC Value](https://github.com/oracle-devrel/technology-engineering/tree/main/data-platform/exadata-cloud-at-customer/exacc-value)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/Specialistdivider1small.jpg

@@ -0,0 +1,49 @@
+# Exadata Cloud@Customer Infrastructure
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Main Oracle Product Page](https://www.oracle.com/uk/engineered-systems/exadata/cloud-at-customer/)
+
+- [Oracle Exadata Database Service on Cloud@Customer X10M datasheet](https://www.oracle.com/a/ocom/docs/engineered-systems/exadata/exadb-cc-x10m-ds.pdf)
+
+- [Documentation Home](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/)
+
+- [Oracle Exadata Configuration Assistant (OECA)](https://www.oracle.com/database/technologies/oeca-download.html)
+
+## Useful Documentation
+- [Managing VM Clusters](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-manage-vm-clusters.html)
+
+- [Creating DB Homes](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-create-db-homes.html)
+
+- [Managing Oracle Databases](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-manage-databases.html)
+
+- [Managing Backups Destinations](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-manage-db-backup-and-recovery.html)
+
+- [Policy details for Exadata Cloud @ Customer](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-policy-details.html)
+
+- [Using the Dbaascli Utility](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-using-dbaascli.html)
+
+- [Monitoring and managing storage servers with ExaCLI](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-using-exacli.html)
+
+- [Rest API](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/rest.html)
+
+- [Exadata Cloud API/CLI Alignment Matrix (Doc ID 2768569.1)](https://support.oracle.com/epmos/faces/DocumentDisplay?id=2768569.1)
+
+- [Enhanced Infrastructure Maintenance Controls for Oracle Exadata Database Service on Cloud@Customer](https://blogs.oracle.com/database/post/enhanced-infrastructure-maintenance-controls-for-oracle-exadata-database-service-on-cc)
+
+## Snapshot Technologies
+[Setting up Oracle Exadata Storage Snapshots](https://docs.oracle.com/en/engineered-systems/exadata-database-machine/sagug/exadata-storage-server-snapshots.html#GUID-3147A414-3657-4B6C-B22E-A5F5869574C2)
+
+[Oracle ACFS Snapshots](https://docs.oracle.com/en/database/oracle/oracle-database/19/ostmg/understand-acfs-concepts.html#GUID-5A3EF695-A795-4FEA-8BE2-AF657BD2238C)
+
+[Oracle ACFS Snapshot Use Cases on Exadata (Doc ID 2761360.1)](https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=274346774362287&id=2761360.1&_afrWindowMode=0&_adf.ctrl-state=jgdocci36_4)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-infra/README.md

@@ -0,0 +1,32 @@
+# Exadata Cloud@Customer Single Node VM Cluster
+
+With this enhancement, you can deploy and run multiple single-instance databases in a single-node cluster without RAC licenses being required.
+
+Please note. This functionality should only be used in non-production environments where the customer does not have RAC licenses.
+
+The lack of RAC licenses means that the customer is unable to easily instantiate the DB instance on another DB Server in the ExaDB infrastructure. This means that during maintenance, there will ALWAYS be an outage of the DB service unless the customer moves the service to the DR environment. 
+
+Single Node VM Cluster provides ZERO capability for local failover for either planned or unplanned outages.
+
+For customers who do have a RAC license, but want to run Single Node instances, the preferred mechanism is to use clusters, as outlined in the following deck: SIDB on ExaDB
+
+The Single Node VM Cluster implementation is rolled out only to the MTY region. It will be rolled out to other regions in a phased manner
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [About Single-Node VM Cluster](https://docs.oracle.com/en-us/iaas/exadata/doc/ecc-manage-vm-clusters.html#GUID-F528AA9C-2130-4E15-B8DE-DF65FD580789)
+
+- [Using the Console to Create a Single-Node VM Cluster](https://docs.oracle.com/en-us/iaas/exadata/doc/ecc-manage-vm-clusters.html#GUID-6F475E61-176B-481D-92B9-5FD93326C7AA)
+
+- [Using the Console to View Single-Node VM Cluster Details](https://docs.oracle.com/en-us/iaas/exadata/doc/ecc-manage-vm-clusters.html#GUID-CEDD32D1-3309-4ED3-BB28-335348CDE790)
+
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-infra/single-node-vm-cluster/README.md

@@ -0,0 +1,28 @@
+# Exadata Cloud@Customer VM Serial Console Access
+
+Announcing the General Availability (GA) of VM Serial Console Access for Exadata Cloud@Customer. With this new feature, customers can:
+
+- Enable a serial console connection to each individual VM
+- Access the virtual serial console via SSH (via proxy and hypervisor)
+- Terminate the serial console connection when the required actions have been completed
+
+Reviewed: 24.06.2024
+
+# Key Benefit
+
+This new feature allows customers to access the serial console of their Virtual Machines in case a need arises for emergency debugging. Use cases include accessing GRUB to fix boot issues or accessing the VM when SSH access is unavailable. Typical reasons for this access include accidentally changing or deleting keys, killing or a processes is in a tucked state, and having firewall issues on the VM, among many others.
+
+# Additional Links:
+
+- [What's New announcement in product documentation](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-whats-new-in-exadata-cloud-at-customer-gen2.html#GUID-303FAF7D-A607-4D3F-95BB-25A477E3F09A)
+
+- Proper OCI user permissions are required to create a serial console connection - see [product documentation](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-policy-details.html#GUID-CBEEA1B3-8CFC-4E9C-ACA8-6675F4582920) for details
+
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-infra/vm-serial-consol-access/README.md

@@ -0,0 +1,32 @@
+# Exadata Cloud@Customer VM Serial Console History and Cloud Shell Integration
+
+Announcing the General Availability (GA) of Serial Console History and Cloud Shell Integration for Exadata Database Service on Cloud@Customer. These features expand upon the functionality of the serial console access features that we had announced previously. With these new features, customers can easily connect to the serial console of their VMs in order to perform corrective actions and can review/audit previous activities carried out via the serial console by users.
+
+Reviewed: 24.06.2024
+
+# Key Benefits
+These features automate certain common administrative tasks related to the usage of the VM serial console for simplicity and convenience, saving precious time and reducing guesswork for our users.
+
+# Console History
+Customers can now conveniently audit administrative activities undertaken via the serial console. The console history information is available directly from the OCI console by any tenancy user who has been granted the proper permissions. This will simplify auditing and allow customers to easily comply with internal security audit policies.
+
+# Cloud Shell integration
+Cloud Shell integration for the serial console allows users who have been granted proper permissions to easily connect to the VM Serial Console directly from the OCI Cloud Shell. This feature simplifies access and eliminates the need for a user to connect from their local system via SSH to OCI. Some customers have network policies that block such access without granting exceptions. Now, with OCI Cloud Shell integration, customers can easily connect "at-a-click" from the OCI Console without having to work around any networking restrictions manually.
+
+# Additional Links:
+
+[What's New announcement in product documentation](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-whats-new-in-exadata-cloud-at-customer-gen2.html#GUID-2A3DD1C7-D1D7-4288-A1AA-19334C0516B4)
+
+[Networking Requirements](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-network-requirements.html#GUID-F06BD75B-E971-48ED-8699-E1004D4B4AC1) in product documentation (especially Table 3-2)
+
+OCI Cloud Shell [product documentation](https://docs.oracle.com/en-us/iaas/Content/API/Concepts/devcloudshellintro.htm)
+
+
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-infra/vm-serial-consol-history-and-cloud-shell-integration/README.md

@@ -0,0 +1,21 @@
+# Exadata Cloud@Customer Networking
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Network Requirements for Oracle Exadata Database Service on Cloud@Customer](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-network-requirements.html#GUID-F06BD75B-E971-48ED-8699-E1004D4B4AC1)
+
+- [Connecting to a Compute Node with SSH](https://docs.oracle.com/en-us/iaas/exadata/doc/eccconnecting.html)
+
+- [Exadata Cloud API/CLI Alignment Matrix (Doc ID 2768569.1)](https://support.oracle.com/epmos/faces/DocumentDisplay?id=2768569.1)
+
+- [Using Data Guard](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-using-data-guard.html)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-network/README.md

@@ -0,0 +1,39 @@
+# Exadata Cloud@Customer Enabling VPN Tunnel for CPS Connections
+
+A number of customers have expressed a requirement that ALL traffic between the ExaC@C and Oracle be tunneled using IPSec VPN.
+
+While the actual CPS connection uses secure mTLS web socket tunnels, as this does not adhere to the security standards of some customers, it is possible to tunnel these tunnels using standard OCI connectivity methods. 
+
+We can use either IPSec Site-to-Site VPN or Fastconnect to establish a permanent secure tunnel between the customer DC and OCI. Then we simply route the CPS traffic via this connection. As far as the ExaC@C CPS servers are concerned, it is simply an IP route it uses to get to the Internet and access the OCI services.  It connects and communicates with the OCI Service endpoints in exactly the same way, except that all traffic is routed through the Site-to-site VPN tunnel.
+
+If you want to do this, then you must raise a Technical Exception to ensure that Cloud Ops and Engineering are aware of any special setup required.
+
+The first thing the customer needs to do is create a Private VPN Tunnel between their DC and Oracle. The details of this are here: Site-to-Site VPN Overview
+
+Then the VCN needs to be configured with a Service Gateway, which allows the customer's internal network to access public Oracle services without going out to the internet. This is described here: Access to Oracle Services: Service Gateway
+
+The list of services is here: Service Gateway Supported Cloud Services
+
+You can see that Exadata Cloud@Customer Gen2 is listed.
+
+All the customer has to do is ensure that this config is in place, and then ensure that the CPS network is routed via the customer's CPE for all outgoing traffic. 
+
+End result is that ALL traffic to and from the CPS to Oracle is tunneled in the VPN.
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Overview](https://docs.oracle.com/en-us/iaas/Content/Network/Tasks/overviewIPsec.htm)
+
+- [Steps to create](https://docs.oracle.com/en-us/iaas/Content/Network/Tasks/settingupIPsec.htm)
+
+- [Troubleshooting](https://www.ateam-oracle.com/post/oracle-cloud-vpn-connect-troubleshooting)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-network/enabling-vpn-tunnel-for-cps/README.md

@@ -0,0 +1,21 @@
+# Exadata Cloud@Customer Security
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Security Documentation](https://docs.oracle.com/en/engineered-systems/exadata-cloud-at-customer/ecccm/ecc-secguide.html)
+
+- [Oracle Gen 2 Exadata Cloud@Customer Security Controls Technical Brief](https://www.oracle.com/a/ocom/docs/engineered-systems/exadata/exadata-cloud-at-customer-security-controls.pdf)
+
+- [Operator Access Control Documentation](https://docs.oracle.com/en/cloud/paas/operator-access-control/exops/overview-of-operator-access-control.html)
+
+- [Operator Access Control Technical Brief](https://www.oracle.com/uk/a/ocom/docs/engineered-systems/exadata/oracle-operator-access-control-tech-brief.pdf)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.

data-platform/exadata-cloud-at-customer/exacc-security/README.md

@@ -0,0 +1,21 @@
+# Exadata Cloud@Customer Oracle Key Vault (OKV) integration
+
+Oracle Key Vault is a full-stack, security-hardened software appliance built to centralize the management of keys and security objects within the enterprise. 
+
+Integrate your on-premises Oracle Key Vault (OKV) with Oracle Exadata Database Service on Cloud@Customer to secure your critical data on-premises. Oracle Key Vault integration enables you to take complete control of your encryption keys and store them securely on an external, centralized key management device.
+
+Reviewed: 24.06.2024
+
+# Useful Links
+
+- [Integrating Exadata Cloud@Customer with OKV](https://docs.oracle.com/en-us/iaas/exadata/doc/adb-manage-keys-on-ext-dev.html#GUID-F231C91C-A36C-4EA8-B36F-7426F97826E3)
+
+- [Customer-Managed Keys in Exadata Database Service on Cloud@Customer](https://docs.oracle.com/en-us/iaas/exadata/doc/manage-encryption-keys-on-external-devices.html#GUID-084AA149-AD28-43D5-AB7A-B5B8980810B2)
+
+# License
+
+Copyright (c) 2024 Oracle and/or its affiliates.
+
+Licensed under the Universal Permissive License (UPL), Version 1.0.
+
+See [LICENSE](https://github.com/oracle-devrel/technology-engineering/blob/main/LICENSE) for more details.