Oracle Cloud Infrastructure – Monthly Update March 2023

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

Search with OpenSearch now supports OpenSearch version 2.3

OCI Search with OpenSearch now supports OpenSearch version 2.3. This version uses Lucene 9.1 which provides performance improvements resulting in 10-15% faster indexing.

OpenSearch version 2.3 also includes improvements in:

  • Security, including the first phase of role-based access control.
  • APIs, including support for bulk indexing and deleting, and the ability to manage indices and aliases.
  • Queries, including query language support for nested aggregations, geo point fields, and geohashes.
  • Experimental features such as segment replication, remote back-end storage, and drag-and-drop visualization in OpenSearch Dashboards.

New clusters are created by default as OpenSearch 2.3 clusters. Existing clusters will still use OpenSearch version 1.2.4, however you can upgrade them to version 2.3 using the steps described in Upgrading a Cluster.

X9-based virtual machine GPU shapes for Compute instances

Two new Intel X9-based GPU shapes are now available for virtual machine instances.

  • VM.GPU.GU1.1 (also named VM.GPU.A10.1)
  • VM.GPU.GU1.2 (also named VM.GPU.A10.2)
  • For more information, see Compute Shapes.

Data Flow Supports Arm-Based Compute Shapes

You can now select Arm-based compute shapes for your drivers and executors with Data Flow. For more information, see the Data Flow Service Limits documentation.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Advertisement

Oracle Cloud Infrastructure – Monthly Update Feb 2023

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

Custom Query Bars in Trace Explorer

You can create and save Custom Query Bars for later use, and edit saved query bars from the new Open Query Bar panel. This feature is similar to the Saved Queries feature in which a query in Trace Explorer can be saved and used at a later time to filter trace data. For more information, see Monitor Traces in Trace Explorer.

Synthetic Monitoring Enhancements

A new release is available with the following Synthetic Monitoring features. You can now:

APM: OpenTelemetry Native Protocol is Now Supported

You can now configure OpenTelemetry data sources to upload trace and metric data using the native OpenTelemetry protocol (OTLP) directly to APM. For information, see Configure OpenTelemetry Data Sources.

Data Safe: Support for Autonomous Database on Oracle Exadata Cloud@Customer

You can now register an Autonomous Database on Oracle Exadata Cloud@Customer as an Oracle Data Safe target database. You can choose either the Oracle Data Safe on-premises connector or Oracle Data Safe private endpoint connectivity option.

Oracle Autonomous Linux 8 now available as a platform image

Oracle Autonomous Linux 8 is now available as a platform image. For more information, see Platform Images.

Data Safe: Advanced filtering using SCIM in audit and alert reports

You can now add advanced filters to your audit or alerts reports. Advanced filters provide you with the flexibility to analyze your data using complex conditions and multiple criteria. For more information, see the following in the Using Oracle Data Safe guide:

Discover and Monitor External Database Systems in Database Management

You can now discover an External Database System, which is an Oracle Database System located outside of Oracle Cloud Infrastructure, and monitor the following components (in addition to databases) in the Database Management service:

  • Clusters
  • ASM
  • Listeners

Data Safe: Audit Insights

You can now use Audit Insights to view and analyze the audit volume of several items, such as target databases, schemas, and database users. Analyzing your top items by audit volume can help you identify what audit policies should be adjusted to improve the overall security of your target databases. For more information, see Audit Insights in the Using Oracle Data Safe guide.

Data Safe: New Activity Auditing reports

Additional Activity Auditing reports have been added to Oracle Data Safe. These reports include Common User Activity, Database Error, Data Extraction Activity, and Sensitive Data Activity. For more information, see the Activity Auditing Reports section in Activity Auditing Overview in the Using Oracle Data Safe guide.

Anomaly Detection now includes Univariate Anomaly Detection, Multivariate Anomaly Detection improvements, and Asynchronous Detection

We’ve added support for detecting anomalies in univariate signals that allow you to detect different types of anomalies in univariate signals: point, collective, and contextual anomalies.

Data Science notebook session JupyterLab interface enhancements

  • The Launcher has been updated with an icon caching mechanism and a Getting Started notebook as a separate button for better performance. The Launcher welcome section information was updated to include the links to the Environment Explorer and Notebook Explorer, settings, and documentation.
  • The Environment Explorer has been updated to receive information about the example notebooks from GitHub, and backs up to the Object Storage location when there is no internet access. The example notebook card shows the notebook description, title, and the conda slug it was developed on.

New Release for Data Integration (fixes)

This release contains the following fixes.

  • Reduced the startup times for pipeline task runs, and the delay between task runs in a pipeline, thereby improving overall pipeline execution performance.
  • Reduced the startup times for data loader task runs, improving overall execution performance.

Oracle Database Autonomous Recovery Service is Now Available

Oracle Database Zero Data Loss Autonomous Recovery Service is a fully managed data protection service for Oracle databases running on Oracle Cloud Infrastructure (OCI). Unique, automated capabilities protect Oracle Database changes in real time, validate backups without production database overhead, and enable fast, predictable recovery to any point in time. Low costs based on the amount of data being protected mean that zero data loss resiliency is available to organizations of any size and virtually any budget.

Oracle Visual Builder Studio is now available

Oracle Visual Builder Studio (VB Studio) is a robust application development platform that helps your team collaboratively develop, test, deploy, and maintain the lifecycle of all your applications. VB Studio is aimed at:

  • Oracle Cloud Applications admins, who need to extend their Apps with business-specific customizations;
  • Low-code developers, who want to create responsive apps using a visual designer;
  • Experienced programmers, who want to modify the source code for applications created by others, or to develop bespoke apps using the web programming language of their choice;
  • Any development team wanting to manage their development process, code versioning, CI/CD automation, and more.

New protection capabilities are available for use with in-region WAF

The Web Application Firewall (WAF) has been updated to include new WAF protection capabilities. These protection capabilities include rules for software such as Microsoft Exchange, Django, and Zoho. For a full list of capabilities, see: Protections for Web Application Firewall.

OCI Stack Monitoring : UI-based Discovery for PeopleSoft Resources

Users can now perform PeopleSoft resource discovery directly from the Stack Monitoring UI, greatly simplifying the discovery process.

Visualize Synthetic Monitor Runs in Network Data Explorer

You can now visualize the end-to-end network data path of monitor runs on one or more vantage points in the Synthetic Monitoring Network Data Explorer. The Network Data Explorer displays a topology diagram of the network path (aggregated traceroute) taken by a probe packet on an IP network, and the list of IP addresses of all the routers it pinged from source to destination. For more information, see View Monitor History.

MySQL Database Service Support for MySQL Version 8.0.32

MySQL Database Service now supports MySQL 8.0.32. New MySQL DB systems are based on this latest MySQL database version. For existing DB systems, you must manually upgrade MySQL Server, such as from version 8.0.31 to 8.0.32.

The new minor version includes improvements and bug fixes. For more information, see MySQL 8.0.32 Release Notes.

New release for Data Catalog

A new release for Data Catalog is now available. Apart from bug fixes and enhancements, you can now:

  • Use SCAN (Single Client Access Name) to create data asset for private RAC-enabled Oracle Databases, including Exadata
  • Gather metadata in Metastore for Delta Lake tables present in Object Storage
  • Harvest the Delta Lake tables from the Metastore into the Data Catalog

Manage master encryption key wallets in OCI GoldenGate

You can now manage master encryption key wallets in OCI GoldenGate. You can use master encryption keys to encrypt trail files distributed to other GoldenGate deployments. Learn more, or see what else is new.

DevOps now supports validating the Helm chart

DevOps now supports verifying the integrity of Helm chart before the deployment. If the verification fails, then the Helm chart is not deployed. For more information, see Adding a Helm Chart.

Media Flow now supports SRT and JSON formats for creating subtitles

Oracle Cloud Infrastructure Media Flow now supports SRT and JSON formats for creating subtitles. For more information, see Media Flow.

DevOps supports running commands in the deployment pipeline

You can now run custom commands in the deployment pipeline. The Shell stage can be added at any point in the deployment pipeline. You must prepare a command specification YAML file containing all the steps that you want to run during the deployment. The command specification is run on a container instance host in the selected compartment and subnet in your tenancy. For more information, see Adding a Shell stage.

OCI Search with OpenSearch now supports role-based access control

OCI Search with OpenSearch now support role-based access control. With role-based access control, you can define and control what users can access and configure when connecting to an OpenSearch cluster.

For more information, see:

To use role-based access control with existing clusters that were created before today, you need to enable the feature, see Upgrading an Existing Cluster for Role-Based Access Control.

OCI Secrets Store CSI Driver Provider enables Kubernetes clusters to access secrets in Vault

When you create Kubernetes clusters using Container Engine for Kubernetes, you can now choose to store application
secrets in an external secrets store, accessed using the Kubernetes Secrets Store CSI driver (secrets-store.csi.k8s.io).

The Secrets Store CSI driver integrates secrets stores with Kubernetes clusters as Container Storage Interface (CSI) volumes. The Secrets Store CSI driver enables Kubernetes clusters to mount multiple secrets, keys, and certificates stored in external secrets stores into pods as a volume. Once the volume is attached, the data in the volume is mounted into the application container’s file system. OCI Vault is one such external secrets store, and Oracle provides the open source OCI Secrets Store CSI Driver Provider to enable Kubernetes clusters to access secrets in Vault.

For more information, see the OCI Secrets Store CSI Driver Provider documentation on GitHub.

Alternatively, you can continue to use the current method of storing application secrets in etcd, which is still supported.

MySQL Database Service Enterprise Encryption Functions

MySQL Database Service now has Enterprise Encryption functions, which include a set of OpenSSL capabilities at the SQL level. You can use MySQL Enterprise Encryption to implement data protection using public-key asymmetric cryptography to encrypt, decrypt, sign, and verify signatures. The new functions are provided by the MySQL component component_enterprise_encryption.

Confidential Computing

Confidential computing encrypts and isolates in-use data and the applications processing that data. For more information, refer to Confidential Computing.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update January 2023

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

New compute model: ECPUs for Autonomous Database on Dedicated Exadata Infrastructure

You can now configure your Autonomous Database resources using a new compute type called ECPUs. For more information about the compute models supported by Autonomous Database, see Compute Models in Autonomous Database on Dedicated Exadata Infrastructure.

Reduce the number of sign-in prompts by using Keep me signed in

Administrators can now turn on Keep me signed in to reduce the number of sign-in prompts for users. After enabling Keep me signed in, administrators configure a sign-on policy to specify the allowed duration for a signed-in session and how long a signed-in session can be inactive before having to sign in again.

O&MAutomatically Generate and Add Policies for Database Management

You can now use the guided policy setup in Database Management to automatically generate and add the IAM user and service policies required to enable and use Database Management. For more information on: 

O&M – Operational InsightsNew data objects, advanced scope filters, and the ability to set custom thresholds

New database and host data objects are available for use by Database Explorer and Host Explorer.  For more information, see Data Object Reference.

Data Object explorers now provide advanced scope filtering capabilities that allow you to perform more targeted analysis. For more information, see Using Data Object Explorers (Define the Scope).

Capacity Planning now allows you to specify custom high and low utilization thresholds that facilitate more accurate forecasting. For more information, see Changing Utilization Thresholds.

Personal Identifiable Information detection is introduced

Personal Identifiable Information (PII) detection identifies, classifies, and de-identifies private information in unstructured text.

Pipelines and pipeline runs are introduced

Machine learning pipelines are a crucial component of the modern data science workflow. They help automate the process of building, training, and deploying machine learning models, which allows data scientists to focus on more important tasks like data exploration and model evaluation. Machine learning, by nature, is a highly repetitive, iterative process. Changing and evolving data requires models to be continuously retrained to keep prediction accuracy high. The workflow itself, however, remains mostly the same, or at least parts of it.

For more information, see Data Science and take a look at our Data Science blog.

Instance accessibility status metric for compute VM instances

You can monitor whether a VM instance is responsive by using a new instance accessibility status metric. Compute sends an Address Resolution Protocol (ARP) request to the instance’s virtual network interface card (VNIC). If the ARP ping fails, the metric shows that the instance is unresponsive. For more information, see Compute Health Metrics.

Management Agent Enhancements

A new release of Management Agent is now available with the following enhancements:

  • Service Plug-ins and Work Requests: You can list all the service plug-ins, and their respective work requests, deployed from a Management Agent using the Agent details page. For information, see Agents Details and Deploy Service Plug-ins.
  • Associated Agents: You can list all the agents associated to a Management Gateway using the Gateway details page. For information, see Gateway Details.

Oracle Enterprise Linux 8 is certified for the Linux Pluggable Authentication Module (PAM)

We now support Oracle Enterprise Linux 8 for the Linux Pluggable Authentication Module (PAM).

Accelerated Data Science 2.7.3 is released

The following changes were made in ADS 2.7.3:

  • Added support for the model version set feature.
  • Added --job-info option to ads opctl run CLI to save job run information to a YAML file.
  • Added the AuthContext class. It supports API key configuration, resource principal, and instance principal authentication. In addition, predefined signers, callable signers, or API keys configurations from specified locations.
  • Added restart_deployment() method to the framework-specific classes. Update model deployment associated with the model.
  • Added activate() and deactivate() method to the model deployment classes.
  • Fixed a bug in to_sql(). The string length for the column created in Oracle Database table was counting characters, not bytes.
  • Fixed a bug where any exception that occurred in a notebook cell printed “ADS Exception” even if the ADS code was not responsible for the error.

Helm Charts Support for Service Mesh Resources

Customers can now use Helm charts to create Service Mesh resources all at once; the resources do not have to be in the order suggested by the Service Mesh conceptual model. If the parent resource is not present or is not active, users will not see any errors from the operator. The operator controller sends the create request to the Service Mesh control plane once the parent resource becomes active.

Data Labeling now Supports Key Value Labeling

You can now add key value labels to documents. For more information see the Data Labeling service guide.

Service Mesh Timeout Configuration

In a microservices architecture, always define timeouts in your services to avoid waiting indefinitely for responses, which wastes resources and may cause other (waiting) services to fail. There are two types of timeouts in Service Mesh: request timeouts and idle timeouts. The maximum time a microservice has to respond to a request before the client closes the HTTP connection is defined as request timeout. It is possible to configure the timeout per route on the virtual service route table and the ingress gateway route table, as well as per request on the virtual deployment. The idle timeout is defined as the period during which no active requests are received. The connection is closed when the idle timeout is reached, which can be configured per request on the virtual deployment.

Introducing Data Science-Model Versioning in Model Catalogs

Model versioning enables you to keep records of the different models that you’ve trained, and your various attempts at improving the model’s performance on validation datasets. Typically, you would train multiple model “candidates” that are represented by different versions. Model versioning allows you to keep track of these candidate models in a flexible way.

Logging Analytics: New visualization to identify issues in your logs, more UI enhancements

Issues Visualization: A new visualization Issues is now available in Logging Analytics that helps you to identify new issues in your logs in the selected time range. These are the issues found in the selected time range but are not present in the baseline time range that you select for the analysis. See Issues Visualization.

Enhancements

  • Exclude field values from search: The filter dialog box in the Log Explorer now allows you to select specific field values to exclude from the log search. See Exclude Field Values from Search.
  • Compare search results across different time frames in Tile visualization: When you use the Tile visualization, enable the Show Change option to compare the search results between the current time range and the previous one of the same size.

Support for Kubernetes version 1.25.4

Container Engine for Kubernetes now supports Kubernetes version 1.25.4, in addition to versions 1.24.1 and 1.23.4. Oracle recommends you upgrade your Kubernetes environment to version 1.25.4. For more information about Kubernetes 1.25.4, see the Kubernetes Changelog.

File Storage Support for Cross-Region Replication

File Storage now supports file system replication across availability domans and across regions. Cross-region replication provides protection from regional outages, aids in disaster recovery efforts, and addresses data redundancy compliance requirements. For more information about this feature, see File System Replication.

OCI Search with OpenSearch now supports the OpenSearch Snapshot API

You can now use the OpenSearch Snapshot API with OCI Search Service with OpenSearch. You can use the Snapshot API to take and restore snapshots of your OpenSearch Clusters. Snapshots let you recover a failed cluster or enable you to migrate from one cluster to another. For more information about this feature, see Cluster Backups Using the Snapshot API.

OCI Search with OpenSearch now supports the OpenSearch Index State Management plugin

You can now use the OpenSearch Index State Management (ISM) plugin with OCI Search Service with OpenSearch. The ISM plugin lets you automate administrative operations for managing your OpenSearch cluster indexes. For more information about this feature, see Managing Indexes.

Database Management Support for PDBs on the Base Database Service and Exadata Cloud Infrastructure

You can now enable Database Management for Oracle Cloud Pluggable Databases (PDBs on the Base Database Service and Exadata Database Service on Dedicated Infrastructure), and use Database Management features for monitoring, performance management, tuning, and administration. For more information, see Enable Database Management for Oracle Cloud Databases.

Custom Metrics in Application Performance Monitoring

You can now use custom metrics in Application Performance Monitoring. This new feature allows users to use additional trace data as a source for metrics. Metrics can be configured to include multiple dimensions, as well as a machine learning-based anomaly detection. These metrics can be used for alerts and be included in cross services dashboards. For more information, see Custom Metrics.

Span Enrichment in Application Performance Monitoring

You can now use span enrichment in Application Performance Monitoring. This new feature provides users with the ability to change and add data to ingested spans. Use key value pairs to translate codes to friendly names, mask sensitive data, block unwanted spans, and more. For information, see Span Enrichment.

Monitor Siebel Applications with APM

You can use Application Performance Monitoring to monitor Siebel applications and provide deep tracing capabilities. The latest APM Java agent 1.8 includes support to browser agent auto injection in the generated Siebel HTML pages for real user monitoring (browser interactions). This feature was originally released on December 1, 2022. For more information, see Configure Tracing for Siebel.

 

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update December 2022

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

Time zone and language display preferences

The Announcements service now lets you specify the time zone in which you want to display announcements received by email. Subscriptions for announcements related to the Oracle Fusion Applications service alone also support language display preferences.

Full Stack Disaster Recovery is now available

Full Stack Disaster Recovery is now available in India South (Hyderabad), India West (Mumbai), Australia East (Sydney), Australia Southeast (Melbourne), and US West (San Jose) regions. For more information, see Full Stack Disaster Recovery Documentation and Full Stack Disaster Recovery API Reference.

New release for Big Data Service 3.0.18

The following features are new for Big Data Service:

  • You can add a cluster profile when creating an ODH 2.0 or ODH 1.0 cluster. 
  • The available cluster profiles include:
    1. Hadoop_Extended
    2. Hadoop
    3. Hive
    4. Spark
    5. HBase
    6. Trino
  • You can stop and start clusters to meet your required usage

Live migration supported for Windows-based compute instances

Live migration is now supported for compute instances that use Windows images. For more information, see Infrastructure Maintenance.

Data Science notebook session timeout change

We have simplified the process so that there is only one option to extend a notebook session to the maximum amount of time allowed by the users’ tenancy.

New region in Chicago, United States

The US Midwest (Chicago) region is now available. The region identifier is us-chicago-1. The region key is ORD. This region has one availability domain.

The Queue service is now available

Oracle Cloud Infrastructure (OCI) Queue is a fully managed serverless service that helps decouple systems and enable asynchronous operations. Queue handles high-volume transactional data that requires independently processed messages without loss or duplication. Queue supports transparent, automatic scaling based on throughput for producers and consumers. Queue uses open standards to support communication with any client or producer with minimal effort.

New connection types available in GoldenGate

A new deployment type for PostgreSQL and new connection types are now available in GoldenGate. Learn more.

Oracle NoSQL Database Cloud : Migrator updates

The following are the new features/changes are available in Oracle NoSQL Database Cloud Service:

  • Enhanced the migrator to support importing CSV files that conform to the RFC4180 standard. Users can create a NoSQL table that corresponds to CSV file fields either manually or through the migrator. The migrator now supports table creation with on-demand capacity and Import/Export of Child tables in NDCS. Additionally, it provides an option to specify OCI Object Storage service namespace for valid sources and sinks.

Support for dynamically provisioning Kubernetes Persistent Volume Claims (PVCs) on new file systems in File Storage service

You can now provision Kubernetes persistent volume claims (PVCs) by dynamically creating new file systems in the Oracle Cloud Infrastructure File Storage service. The File Storage service file systems are mounted inside containers running on clusters created by Container Engine for Kubernetes using a CSI (Container Storage Interface) driver deployed on the clusters.

New features for Megaport customers

If your FastConnect Partner is Megaport, you can now use the OCI Console to set up FastConnect and then create a Megaport Cloud Router (MCR) that can be used to connect your VCNs to AWS or other cloud providers. Details on this are in FastConnect: With an Oracle Partner (see Task 4: Complete the partner end of the virtual circuit).

OCI DevOps now supports scheduled cascading delete of a project

DevOps now supports scheduled cascading delete of a project along with its sub-resources such as environment, artifacts, and pipelines. The cascade delete option has a wait period of 72 hours within which it can be canceled. For more information, see Deleting a Project.

MySQL HeatWave now supports AMD E4

MySQL HeatWave now supports E4 Standard. New HeatWave clusters are based on E4 Standard, E3 Standard, or a combination of both. For more information, see Supported Shapes.

Container Instances is now available Container Instances is a serverless compute service that enables you to quickly and easily run containers without managing any servers. Container Instances runs your containers on serverless compute optimized for container workloads that provides the same isolation as virtual machines. For more information, see Container Instances.

Native Support for Exadata Cloud Service

Operations Insights now provides OCI native support (via private endpoint) for Exadata Cloud Service, lowering the barrier to using Exadata Insights functionality as there is no longer any need for an extra agent. Exadata Insights provides visibility into the performance of critical workloads running on Exadata systems. 

Document Understanding is now Available

Document Understanding is an AI service that enables developers to extract text, tables, and other key data from document files through APIs and command line interface tools. With Document Understanding, you can automate tedious business processing tasks with prebuilt AI models, and customize document extraction to fit your industry-specific needs. The following pretrained models are supported:

  • Optical Character Recognition (OCR): Document Understanding can detect and recognize text in a document.
  • Text extraction: Document Understanding provides the word level and line level text, and the bounding box coordinates of where the text is located.
  • Key-value extraction: Document Understanding extracts a predefined list of key-value pair information from receipts, invoices, passports, and driver IDs.
  • Table extraction: Document Understanding extracts content in tabular format, maintaining the row and column relationships of cells.
  • Document classification: Document Understanding classifies documents into different types based on visual appearance, high-level features, and extracted keywords. For example, document types such as invoice, receipt, and resume.
  • Optical Character Recognition (OCR) PDF: Document Understanding generates a searchable PDF file in your Object Storage.

For more information, see the Document Understanding documen

MySQL Database Service: Read Replicas with Load Balancer 

MySQL Database Service users can now easily deploy and maintain up to 18 read replicas to scale out/in read-intensive workloads. The applications can connect to a read-only endpoint that balances the queries between all read replicas in the DB system. As a result, you can achieve read scalability without worrying about managing additional infrastructure to balance the read queries. To create read replicas using the console, go to the DB System Details page, and click Read Replicas under the Resources list. For more information, see Read Replicas and Load Balancer

MySQL Database Service: Replication Channel Filters and Sources Without GTIDs You now have more flexibility to configure channels in MySQL Database Service for hybrid deployments or straightforward live migrations from on-premises or other cloud vendors. There are new options to add filters and source GTID handling in channels for inbound replication. In the Console, use the Channel Source connection positioning options for source MySQL databases that can’t have GTID enabled. Use templates under the Target DB system filter options to easily replicate from other cloud vendors. You can also manually configure your own MySQL replication filters for even more flexibility, like filtering out only specific tables or renaming the schema on the target. For more information, see Inbound Replication

Support for logout back ends

OCI API Gateway. You can now define a logout back end in an API deployment specification, for use with an OAuth 2.0 token authentication policy.

When defining an OAuth 2.0 token authentication policy, you can optionally specify an OAuth 2.0 validation failure policy that includes a path to a logout back end. A logout back end enables API clients to log out cleanly by revoking access tokens, and potentially call other URLs to perform additional post-logout tasks.

Support for OAuth 2.0 and OpenID Connect

OCI API Gateway, You can now create API gateways that validate a JWT or non-JWT authentication token with the OAuth 2.0 introspection endpoint of an identity provider. You specify the Discovery URL of the identity provider from which to obtain the introspection endpoint. The API gateway passes the client credentials (the client id, along with the client secret retrieved from the Vault service) to the identity provider to validate the token. The token is validated without the use of public keys. To make future validation faster, you can specify that you want the API gateway to cache the response from the introspection endpoint.

In addition, you can now set up a validation failure policy to specify how you want the API gateway to handle a failed token authentication response (returned after an unsuccessful attempt to validate a missing or invalid token). Rather than simply returning an HTTP 401 code and the WWW-Authenticate header in the response, you can now specify that the API gateway is to use an OpenID Connect authorization flow to obtain a new JWT access token. Alternatively, you can customize the response to return a status code (and optional message body) of your choice.

New release for GoldenGate

A new release for GoldenGate is now available. This release includes support for collecting deployment diagnostics. Learn more.

Store Terraform configurations in external repositories (DevOps)

Using the OCI DevOps service, you can now create stacks from Terraform configurations stored in external repositories.

Store Terraform configurations in Bitbucket

OCI Resource Manager, You can now create stacks from Terraform configurations stored in Bitbucket. See Creating a Stack in Bitbucket Cloud and Creating a stack in Bitbucket Server.

DevOps Deployment now supports stage level parameters

DevOps Deployments now supports stage level parameters that can be added when a deployment is triggered. Pipeline parameters can be overridden by stage parameters.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update November 2022

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

New release for GoldenGate

A new verion of GoldenGate for Oracle is now available. Ensure that you update your deployments as soon as you can. Deployment types and Connections are now available in ALL regions where GoldenGate is available. Learn more.

Dashboards in Database Management

You can now use the dashboards functionality in Database Management to visualize, explore and analyze database performance metrics in easy-to-interpret widgets. On the Dashboards page, you can:

  • Use Oracle-defined dashboards to monitor the performance of your fleet of dashboards or a single dashboard.
  • Create custom dashboards to meet your specific requirements.

For more information, see Work with Dashboards.

Top Activity Lite: A new mode in Performance Hub for live performance monitoring

Performance Hub has a new mode, called Top Activity Lite, that is optimized for live performance monitoring. This mode provides fast and responsive data that facilitates monitoring the current activities of database systems in real-time.

For more information, see Top Activity Lite.

Exadata Data Objects and Predefined Dashboards for Operations Insights

New Exadata aggregated cell disk data objects are now available for use in Exadata Explorer. This release also includes new predefined Exadata dashboards.

For more information, see  Data Object Reference and Using Data Object Explorers (Save and Share SQL Queries). 

Stack Monitoring now supports TCPS enabled Oracle Databases

Stack Monitoring now supports Oracle Databases leveraging TCP over SSL (TCPS) network encryption protocol for secure Oracle Database communication. 

For more information, see Stack Monitoring: Oracle Database using TCPS

Improved Enterprise Summary

Stack Monitoring’s improved Enterprise summary provides easy access to key performance metrics to help identify the worst-performing or highest-utilized systems in an enterprise.  Enterprise summary makes it easy to:

  • Identify resource outages and open alarms across the enterprise
  • Gain critical insight into the performance of applications and the resources the application runs on.
  • Perform dynamic troubleshooting for any resource

Management Gateway new version available

Management Gateway new version 221019.0021.1667404647 is now available.

This release includes the new feature Gateway Buffer which allows faster connections and response time since the uploads are buffered inside the Management Gateway. For more information, see Management Gateway.

Roll back to a previous apply job

OCI Resource Manager is terraform as Service, OCI Resource Manger now allow roll back to a previous apply job.

Logging Analytics: Option to bring your own keys for encrypting logs

Oracle Logging Analytics enables you to use your own encryption key that you have stored in OCI Vault to encrypt your logs. After you place your request for the encryption using your own keys by contacting Oracle Support, based on the size of your log data, Oracle creates a dedicated block volume or object storage bucket. This ensures that your data is separated and can be selectively encrypted. See Security of Your Logs in Logging Analytics and Allow the Use of Customer-Provided Keys for Encrypting Logs.

Data Flow now Supports SCAN proxies

When using Data Flow with private networks, SCAN Proxy is now supported to access databases in a RAC environment.

List resources and job outputs for OCI Resource Manager

You can now list stack resources, job resources, and job outputs using SDK, CLI, and API, in addition to the Console.

Data Science now connects to Data Flow

You can connect to Data Flow and run an Apache Spark application from a Data Science notebook session. These sessions allow you to run interactive Spark workloads on a long lasting Data Flow cluster through an Apache Livy integration.

Data Flow integration with Data Science uses fully managed Jupyter Notebooks to enable data scientists and data engineers to create, visualize, collaborate, and debug data engineering and data science applications. You can write these applications in Python, Scala, and PySpark. You can also connect a Data Science notebook session to Data Flow to run applications. The Data Flow studio kernels and applications run on Oracle Cloud Infrastructure Data Flow.

Data Flow is a fully managed Apache Spark service that performs processing tasks on extremely large datasets, without the need to deploy or manage infrastructure. For more information, see the Data Flow documentation.

Logging Analytics: Oracle Marketplace app to secure and monitor your IDCS

Logging Analytics users now have an Oracle Marketplace app that deploys a Terraform stack for collecting audit logs to get Security and Governance Insights from an Identity Cloud Service (IDCS) instance. The Oracle-defined dashboards IDCS Audit Logs and IDCS Admin Governance are automatically created to help you in monitoring.

Media Flow now supports Oracle Cloud Infrastructure Logging

Media Flow enables you to use Oracle Cloud Infrastructure Logging to provide execution logs for the Media Workflow jobs. For more information on enabling logging with Media Flow, see the Media Flow documentation

Oracle Database Service for Azure: MySQL Heatwave now available

You can now create MySQL Heatwave clusters in Oracle Database Service for Azure.

Oracle Database Service for Azure (ODSA) portal lets you provision a HeatWave Cluster, consisting of a MySQL DB system and one or more HeatWave nodes.

https://docs.oracle.com/en-us/iaas/odsaz/odsa-provisioning-mysql-heatwave.html

New updates for BDS

New updates to BDS:

  • ODH 2.0 is now available
    • The following services have been upgraded:
      • Apache Hive 3.1.3
      • Apache Spark 3.2.1
      • Apache Hadoop 3.3.3
      • Trino 389
    • Delta Lake 1.2.1 is supported as part of BDS Spark service, Delta Lake offers an ACID abled storage layer over cloud object stores for the BDS Spark service.
  • Apache Flink 1.15.2 is supported in BDS cluster version 3.0.17 and above
  • You can add Edge nodes to existing clusters

New Vulnerability Scanning Agent

OCI Vulnerability Scanning now integrates with Qualys VMDR. Use the Console to create a compute (host) scan recipe using your own Qualys license and then view the results in the Console or the Qualys dashboard.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update October 2022

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

X9-based (Intel) and E4-based (AMD) GPU shapes for Compute instances

Two new GPU shapes are now available for bare metal instances.

  • BM.GPU.GU1: X9-based GPU compute.
  • BM.GPU.GM4: E4-based GPU compute.

Both shapes include locally-attached, NVMe-based SSD storage. The BM.GPU.GM4.8 shape supports cluster networks.

Windows Server 2022 now available as a platform image

Windows Server 2022 is now available as a platform image. For more information, see Oracle-Provided Images.

Full Stack Disaster Recovery is now available

Full Stack Disaster Recovery (FSDR) is an Oracle Cloud Infrastructure (OCI) disaster recovery orchestration and management service that provides comprehensive disaster recovery capabilities for all layers of an application stack, including infrastructure, middleware, database, and application.
For more information, see Full Stack Disaster Recovery Documentation and Full Stack Disaster Recovery API Reference.

New Access Review Features in Access Governance

The following new features are available in Oracle Access Governance:

  • Event-Based Access Reviews: You can now launch event-based access reviews from Oracle Access Governance that initiate whenever a change is detected in a user lifecycle state or a user attribute, such as onboarding of new users, department change, job-code change, location change, retirement or exit of users, or manager change. Once configured, these are automatically triggered when one or more predefined event types occur.
  • Access Review Scheduler: You can now schedule and run the Access Review Campaigns periodically which can be Monthly, Quarterly, Half-Yearly, or Yearly.

Check out what Access Governance offers on OCI and for more information, see the Access Governance cloud documentation.

Enhancement in Application Performance Monitoring

Attribute Management in Application Performance Monitoring

You can now enable or disable automatic acceptance of new attributes, and delete and block unwanted existing attributes in Application …

Filter Trace Data in Application Performance Monitoring Dashboards

You can now configure the following Oracle-defined filters for the APM Geomap and APM Trace Table widgets to filter trace data …

Export Dashboards in Application Performance Monitoring

You can now export custom dashboards in JavaScript Object Notation (JSON) format.

Synthetic Monitor History Availability

Synthetic monitor history and accompanying resources such as screenshots and HTTP Archive (HAR) files will now be available for a period of 90 days, and you can filter and view monitor history for any seven-day period within the last 90 days.

Enhancements in Trace Explorer

Use Drilldowns on the Span Details page to link to other Oracle Cloud Infrastructure services or custom services using customizable URLs that include span attributes. On the Span Details page, you can use and edit the available drilldowns and create new ones.

Save Global Filters for later use, and open and edit saved global filters from the new Saved Global Filters panel.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update September 2022

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

Stack Monitoring: Support for both OCI Compute Instance and on-premises hosts

Stack Monitoring adds full monitoring support for both OCI Compute Instance and on-premises host servers, thus providing greater visibility into the health of available host resources and the health of the entire application stack.

For more information, see Monitoring Host Servers.

NoSQL Database Cloud : New functionality in OCI console

The following new functionality has been added to the OCI console:

  • Bulk upload of table rows: The Upload Data button in the Table details page allows bulk uploading of data from a local file into the table, via the browser. The Bulk upload feature is intended for loading less than a few thousand rows.
  • Query execution plan: You can now access the query execution plan for your SQL queries from the OCI console. On the Table Details page, you have a button to view the query execution plan.

View Trail files in OCI GoldenGate Service

Deployments upgraded to version 21.6 or higher can now view Trail file information on the deployment details page under Resources. Learn more.

OCI Cost Analysis Scheduled reports are now available

Use the new Scheduled reports page to generate scheduled reports based on saved reports from Cost Analysis. For more information, see Scheduled Reports Overview.

DevOps Integration with Visual Builder Studio

DevOps now supports integration with Visual Builder Studio (VBS) repositories. You can mirror VBS repositories and initiate manual as well as trigger based build run for commits to the VBS repository. For more information, see Creating an External Connection.

Threat Intelligence adds new search values

You can now search for Threat actor or Malware in the Threat Intelligence database. See Searching for Threat Indicators.

Oracle Cloud Migrations is now available

With the Oracle Cloud Migrations service, you can automate the migration of virtual machines from on-premises environments to Oracle Cloud Infrastructure (OCI). Using a simple managed connection with your data center, you can discover assets that can be migrated, group source workloads into migration projects, schedule data replication, and launch the migrated virtual machines to OCI. For more information, see the Oracle Cloud Migrations documentation.

Support for multi-argument authorizer functions and access tokens

You can now use multi-argument authorizer functions for authentication and authorization. A multi-argument authorizer function accepts a user-defined, multi-argument access token comprising one or more elements of a request.

Using a multi-argument (rather than a single-argument) authorizer function enables an API gateway to perform finer-grained, request-based authentication. A multi-argument authorizer function can query decision services and policy agents with attributes from the access token and with other request elements such as query parameters, hostname, and subdomain.

Support for multiple back ends, and dynamic back end selection

You can now define multiple back ends for the same API deployment, so that requests sent to the same API gateway can be routed to different back ends.

When defining multiple back ends for the same API deployment, you create rules to enable the API gateway to dynamically select the back end to which to route a request, based on an element in the original request.

Support for multiple authentication servers for the same API deployment

You can now define multiple authentication servers for the same API deployment. The authentication servers you set up can be of the same type or a different type.

When defining multiple authentication servers for the same API deployment, you create rules to enable the API gateway to dynamically select which authentication server to use to authenticate requests, based on an element in the original request.

Cross availability domain replication of volumes and volume groups

Block Volume now supports replication across availability domains within the same region for block volumes, boot volumes, and volume groups. This feature is only supported for commercial regions containing multiple availability domains. For more information about this feature, see Replicating a Volume and Cross Availability Domain Replication.

VCN route table increase for route rules

The default limit for route rules in VCN routing tables has been increased to 200 and made a soft limit.  If you need additional route rules, please open a service limits increase request.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update August 2022

Below are the major new updates in Oracle Cloud Infrastructure Gen2 Platform.

Longer notification before preemptible compute instances are deleted

Preemptible instances now emit an instancepreemptionaction event two minutes before the instance termination begins.

For more information about how to use the Events service to receive notifications about preemptible instances, see Tracking Instance Preemption Events.

Exadata Cloud@Customer: Oracle Standard Tagging for Resources on Oracle Exadata Database Service on Cloud@Customer

Exadata Database Service on Cloud@Customer resources can now be tagged using Oracle Standard tags according to your organizational scheme. By tagging resources, you can group them, manage costs, and gain insight into how they are being used. For more information, see Tagging Oracle Exadata Database Service on Cloud@Customer Resources

Enhanced Integration with Database Management

From the OCI Database Management service console, you can now access Operations Insights SQL Warehouse and Capacity Planning functionality directly within the current database context.

Dynamic performance scaling with autotuning for Block Volume service

Block Volume now provides dynamic performance scaling with autotuning for attached block volumes.

Block Volume provides dynamic performance scaling with autotuning. This feature enables you to configure your volumes so that the service adjusts the performance level automatically to optimize performance.

For more information about this feature, see Performance Autotuning.

VMware Software In-Place Upgrade Now Available for Oracle Cloud Infrastructure VMware Solution

You can now use an In-place upgrade workflow to upgrade your SDDC and ESXi host software from version 6.x to 7.x. The workflow creates a new upgraded SDDC and hosts, and guides you through any manual steps required to complete the upgrade in vSphere.

For more information, see Upgrading VMware Software.

Oracle Linux 9 now available as a platform image

Oracle Linux 9 is now available as a platform image. For more information, see Oracle-Provided Images.

Oracle Function – Support for C# (.NET 6.0)

You can now use Oracle Functions to build and deploy functions written in C# (.NET 6.0). A new Function Development Kit (FDK) is available for C# (.NET 6.0).

For more information, see Languages Supported by Oracle Functions.

MySQL Database Service: Easier to scale up or down

MySQL Database Service now allows changing standalone DB system shapes, making it easier to scale up or down the capacity depending on your workload needs.

For more information, see Editing a DB System.

File Based Trigger Feature for DevOps Build Run

DevOps now supports triggering a build run by specifying the files in the repository using include/exclude file patterns for a commit. The files are specified using glob patterns. For more information, see Triggering a Build Run.

Cloud Advisor: Viewing Recommendations across an Organization

Cloud Advisor users in a parent tenancy can now view recommendations at both the parent and child tenancy levels in an organization. For more information, see Cloud Advisor Overview.

Operations InsightsDatabase CPU Capacity Planning Allocation Range

The Trend and Forecast analysis chart now displays the Over Allocation Range. This range shows, for a single database or group of databases on a host, the number of CPUs allocated to those databases versus the number of CPUs the host actually has, thus making it easy to identify potential resource and performance issues.

Operations InsightsData Object Explorer Visualizations and Save SQL Search Functionality

Operations Insights Data Object Explorers now adds line chart, area chart, and bar chart visualizations. In addition to the ability to save custom SQL searches, predefined SQL searches are now available for immediate use. SQL searches can be saved as Operations Insights Dashboard widgets.

For more information, see Data Object Explorers.

Management Agent Enhancement – Install Multiple Agents

You can now install multiple Management Agent instances on the same Linux machine to replicate agent collected data across OCI regions. For more information, see Install Multiple Management Agents.

Introducing Flexible Compute Shapes for Notebook Sessions and Jobs

  • Data Science notebook sessions now support new flexible compute shapes.
  • Data Science jobs now support flexible compute shapes. 

See the list of supported compute shapes for notebook sessions, jobs, and model deployments. For more information, take a look at Data Science.

Logging Analytics as target for Streaming source

You can now move streams to the Logging Analytics service. To move streaming data to Logging Analytics, create service connectors that use the Streaming service as source and Logging Analytics as target. For an example, see Scenario: Send Streaming Data to Logging Analytics.

Windows Defender Credential Guard for shielded instances

You can now enable Windows Defender Credential Guard when provisioning shielded instances. See How Shielded Instances Work and To create a shielded instance for more information.

Support for explicitly specifying the file system type (ext3, ext4, XFS) for block volumes when provisioning PVCs

When provisioning persistent volume claims (PVCs) on the Block Volume service using the CSI plugin, you can now configure block volumes to have one of the following file system types:

  • ext3
  • ext4 (the default)
  • XFS

The ext3 and ext4 file systems are generally considered better-suited for applications that use a single read/write thread and small files. Whereas, the XFS file system is generally considered better-suited for applications that have multiple read/write threads and larger files.

For more information, see Specifying File System Types for Block Volumes.

Support for setting the externalTrafficPolicy parameter and client IP address preservation independently of each other

OKE, Container Engine for Kubernetes

When provisioning a network load balancer for a Kubernetes service of type LoadBalancer, you can now independently specify:

  • whether or not to terminate requests at the worker node that has its client IP address specified in the IP packet header
  • whether or not to preserve client IP addresses in IP packet headers

Continue to use the externalTrafficPolicy parameter to terminate requests at the receiving worker node, or to proxy requests to other worker nodes in the cluster.

Use the new oci-network-load-balancer.oraclecloud.com/is-preserve-source annotation to preserve, or to prevent the preservation of, client IP addresses.

Note that if externalTrafficPolicy is set to Cluster, client IP addresses are not preserved regardless of the value of the oci-network-load-balancer.oraclecloud.com/is-preserve-source annotation.

Data Flow now supports Oracle Cloud Infrastructure Logging

Data Flow lets you use Oracle Cloud Infrastructure Logging to provide Spark diagnostic logs and (custom) Application logs in the Console or from the CLI.  For more information on enabling Logging with Data Flow, see the Data Flow documentation.

New Release for Database Management

A new release for Database Management is now available!

You can now:

New region pairings available for cross region replication of volumes

New regions pairs are now available for Block Volume’s cross region replication feature. For a full list of supported region pairs, see Replication Target Regions.

O&M APM Synthetic Monitoring Enhancements

A new release is available with the following Synthetic Monitoring features. You can now:

  • Schedule the monitor run sequentially on each vantage point using the Round Robin option when creating a monitor. Previously, you could only run the monitor simultaneously on all selected vantage points. In addition, you can now use the Batched Round Robin option to schedule the monitor run sequentially on batches of vantage points. For more information, see Create a Monitor.
  • Use the Run Now option in the Actions menu on the Monitors page to run the monitor immediately instead of waiting for the next scheduled monitor run. For more information, see Create a Monitor.
  • Add a custom screenshot command to a .side script to capture custom (on-demand) screenshots at a particular instance in the script. You can also view and download custom screenshots similar to the functionality available for standard screenshots. For more information, see Create a Script.

Java Management 5.0 is Now Available

We’re pleased to announce that Java Management 5.0 is available. With this release, JMS has introduced the following capabilities:

  • Install a new Java runtime on any managed systems within a fleet
  • Simplify the installation of the Management agent using installation script
  • Support for unlimited management key installation without expiration

For more information about Java Management, see the Java Management user documentation.

Integration 3

For information about Integration 3 releases, see What’s New and Known Issues.

CLI, SDKs, and REST APIs now available for OCI Search Service with OpenSearch

The CLI, SDKs, and REST APIs are now available for OCI Search Service with OpenSearch.

For more information, see:

New Languages Supported for Speech

The following new languages are supported with this release:

  • English-Great Britain
  • English-Australia
  • English-India
  • French
  • Italian
  • German
  • Hindi

Optimizer Statistics Monitoring in Database Management

You can now monitor the optimizer statistics for a Managed Database, analyze the statistics collection tasks and Optimizer Statistics Advisor tasks, and implement Optimizer Statistics Advisor recommendations in Database Management. For more information, see Monitor and Analyze Optimizer Statistics.

New metrics added for GoldenGate service

New metrics were added for improved monitoring within the Oracle Cloud console. You can use per process metrics to create alarms for specific GoldenGate processes including extracts, replicats, distribution and receiver paths. Learn more.

Support for OCI ComputeO&M Operations Insights

Operations Insights Host Capacity Planning functionality now provides support for OCI Compute instances.

Operations Insights lets you view and analyze utilization trends for critical host resources such as CPU and memory. You can also analyze, compare, and contrast resource usage across hosts.

For more information, see Analyze Host Resources.

Oracle NoSQL Database Cloud : Availability of Child Tables

Table hierarchies (child tables) are available in the cloud. With the availability of table hierarchy, developers have additional flexibility when choosing the best data model to meet their business and application workload requirements. With child tables comes the ability to perform left outer join (nested table) queries.

Oracle NoSQL Database Cloud : Migrator updates

Enhanced the migrator do support importing files from DynamoDB. The process is simple, export your DynamoDB tables as JSON files to AWS S3, then grab those files and import them into Oracle NoSQL.

For more information refer OCI Documentation

Bare metal compute instances: reboot migration on demand and extend maintenance due date

When a bare metal instance is scheduled for reboot migration due to planned infrastructure maintenance, you can now proactively reboot migrate the instance before the maintenance due date.

You can also extend the maintenance due date for bare metal instances that are scheduled for reboot migration.

Single host SDDCs now available for Oracle Cloud VMware Solution

You can now create a single host SDDC using Oracle Cloud Infrastructure VMware Solution. You can use a single host SDDC as a lower-cost entry point, perform your testing and workload validation, and then later migrate to a full production deployment.

Other examples of single host SDDC use cases include:

  • Accelerated onboarding for proof-of-concept, or testing and development
  • Migration between on-premises and Oracle Cloud Infrastructure VMware Solution using VMware HCX, VMware vMotion for live migration, and cold migration
  • Disaster Recovery Evaluation with VMware Site Recovery (SRM) optimized for Oracle Cloud Infrastructure VMware Solution. (VMware SRM is purchased separately).

Single host SDDCs do not support production workloads.

For more information, see Setting Up a Single Host SDDC.

Cloud Shell now offers Private Access

Cloud Shell Private Access allows you to connect a Cloud Shell session to a private network so you can access resources in your private network without having the network traffic flow over public networks.

Blog Article

For more information, see Cloud Shell Private Access.

MySQL HeatWave: Auto reload of data in HeatWave cluster after MySQL upgrade

HeatWave now automatically reloads data from MySQL InnoDB after MySQL node restarts due to maintenance upgrades or planned restarts. With auto-reload capability, you no longer need to take manual steps after maintenance or a restart operation – this reduces the operational overhead and improves service availability.

DevOps Facilitates Service Managed Build Runner Access to Private Resources

You can now connect to self-hosted repositories stored in Bitbucket Server and GitLab Server. You can connect to your private Virtual Cloud Network (VCN) to access the self-hosted repositories with only private IP from the Managed Build stage. During the build, the service-managed build runner facilitates the connection from the build stage to your tenancy subnet. For more information see, Creating External Connections.

Support for Code Editor

You can now use Oracle Cloud Infrastructure (OCI) Code Editor to create and update functions based on:
• template functions written in different languages
• existing function code in remote Git repositories
• sample functions supplied with Oracle Functions that provide useful functionality out-of-the-box

See Creating Functions Using Code Editor.

CSI volume plugin is initial default for clusters running Kubernetes version 1.24 (or later)

With the announcement of support for Kubernetes version 1.24, the initial default storage class set for new clusters created by Container Engine for Kubernetes has changed from oci to oci-bv. As a result, the default volume plugin used to connect new clusters running Kubernetes version 1.24 (or later) to volumes from the Block Volume service is now the the CSI volume plugin rather than the FlexVolume volume plugin.

Existing clusters running Kubernetes version 1.23 (or earlier), and clusters upgraded to Kubernetes version 1.24, are unaffected.

For more information, see Provisioning PVCs on the Block Volume Service.

MySQL AutoPilot: Auto Error Recovery from MySQL failure

With Auto Error Recovery, now when MySQL fails and restarts, the HeatWave cluster automatically restarts, identifies the tables which were loaded prior to the failure, and reloads those tables automatically from MySQL. This reduces intervention on part of the user and also improves service uptime.

Block Volume scheduled backup limited to one per volume per day

Block Volume runs only one scheduled backup per volume per day. If more than one backup is scheduled for a volume on a particular day, the service runs only one of them, using the following priority:

  1. Yearly
  2. Monthly
  3. Weekly
  4. Daily

For more information about scheduled volume backups, see Policy-Based Backups.

Support for Kubernetes version 1.24.1

Container Engine for Kubernetes now supports Kubernetes version 1.24.1, in addition to versions 1.23.4 and 1.22.5. Oracle recommends you upgrade your Kubernetes environment to version 1.24.1. For more information about Kubernetes 1.24.1, see the Kubernetes Changelog.

Code Editor is now available

Oracle Cloud Infrastructure (OCI) Code Editor provides a rich, in-console editing environment that enables you to edit code and update service workflows and scripts without having to switch between the Console and your local development environment. At launch, Code Editor provides plug-in support for Resource Manager, Functions, and Data Science, with support for more OCI services to follow.

For more information, see Working with Code Editor.

OCI now supports intra-VCN routing

OCI now supports intra-VCN routing, which creates local routes for each VCN CIDR in all VCN route tables, new and existing, and also supports ingress routing on internet gateways and NAT gateways. Intra-VCN routing allows you to specify a next-hop private IP address within a VCN for traffic destined to an IP address range that overlaps or is a subset of the VCN’s CIDR. This enables new security and network virtualization use cases.

Additional features for the DevOps deployment specification file

The following new capabilities have been added tothe deployment specification file that allow you to define how commands get executed for an instance group deployment:
1.   Vault variables: The value for vault variables is retrieved from the vault secret and made available as environment variables for all the steps inside the deployment specification file.
2.   Multiline command: Both single and multiple line commands are now supported. Multiline commands essentially work like a bash script.
3.   On failure support: To gracefully exit the deployment stage, you can now specify a list of steps that must be run on failure.
4.   Shell override at step level: The deployment spec allows the shell to be used at the deployment specification global level. This enhancement allows the value to be overridden at the ‘step’ level.

OCI now supports using multiple IPv6 prefixes

OCI now supports the use of multiple IPv6 prefixes within a VCN and subnet, and IPv6 addresses from different prefixes can be assigned to a VNIC. You can choose between receiving a /56 GUA prefix allocated from Oracle,assigning a prefix from a range you own and have imported via the BYOIP verification process, or specify a ULA prefix.

You may assign 3 total IPv6 prefixes per VCN and subnet, and assign IPv6 addresses from up to 3 prefixes to a VNIC.  Up to one Oracle-allocated GUA prefix may be assigned to each VCN and any combination up to 3 total GUA (Oracle-allocated 1 or BYOIPv6 GUAs) or ULA prefixes may be assigned to the VCN. 

Documentation for this support is in Overview of VCNs and Subnets, IPv6 Addresses, and Bring Your Own IP.

Accelerated Data Science 2.6.3 is released

The following changes were made in this version.

  • Added prepare_save_deploy() method to the GenericModel class. Now you can prepare model artifacts and deploy the model within one command.
  •  Added support for binary payloads in model deployment.
  • Updated AutoMLModel, GenericModelLightgbmModel, PyTorchModel, SklearnModelTensorflowModel, and XgboostModel classes to support binary payloads in model deployment.
  • To limit job runtime, added the with_maximum_runtime_in_minutes() method in the CondaRuntime, DataFlowNotebookRuntime, DataFlowRuntime, GitPythonRuntime, NotebookRuntime, and ScriptRuntime classes.
  • Deprecated the ads.dataflow.DataFlow class. Use the ads.jobs.DataFlow class instead.
  • The ads.jobs.DataFlow class supports published conda environments.

For more information, see Data ScienceADS SDK, and ocifs SDK. Take a look at our Data Science blog.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Oracle Cloud Infrastructure – Monthly Update July 2022

Use GraalVM Enterprise in DevOps Build Pipelines

DevOps build pipelines enable you to use GraalVM Enterprise to build high-performance Java applications.

In the Managed Build stage, you can install and use GraalVM Enterprise components such as Native Image and Java Development Kit (JDK) by adding a simple YUM package manager command in your build specification file.

GraalVM Enterprise is available on Oracle Cloud Infrastructure (OCI) at no additional cost.

Support for VCN-native pod networking

You can now provide pods with IP addresses from a VCN’s CIDR block using the OCI VCN-Native Pod Networking CNI plugin. The OCI VCN-Native Pod Networking CNI plugin enables other resources within the same subnet (or a different subnet) to communicate directly with pods in a Kubernetes cluster. Pod IP addresses are directly routable from within the VCN, from other VCNs connected (peered) to that VCN, from on-premise networks, and from the internet.

Since pods are directly routable, you can use ‘native’ VCN functionality to:

  • Control access to and from pods using security rules defined as part of network security groups or security lists. The security rules apply to all pods in all the worker nodes connected to the pod subnet specified for a node pool.
  • Observe the traffic to, from, and between pods using VCN flow logs for troubleshooting and compliance auditing purposes.
  • Route incoming requests to pods based on routing policies specified by routing rules and route tables.

For more information, see Using the OCI VCN-Native Pod Networking CNI plugin for pod networking.

MySQL Database Service: Point in Time Restore (PITR)

You can now restore a standalone MySQL DB system to a specific point in time by using the Point in Time Restore (PITR) feature.
With PITR enabled, the MySQL binary log is safely archived outside the DB system hosts, allowing you to achieve a Recovery Point Objective (RPO) of approximately five minutes.
You can enable PITR in new or existing DB systems online without impacting the database operations.
For more information, see Restoring From a DB System.

Cloud Guard adds Log Insight Detector

Cloud Guard has added two new components that allow users to extend Cloud Guard functionality into log objects:

  • Data Sources allow Cloud Guard to define new sources of information that can be used to drive detections. See Setting Up Data Sources.
  • Log Insight Detector uses data source queries against these special data sources, to identify problems against monitored log objects, then surfacing the problems on the Cloud Guard Problems page. See Setting Up Log Insight Detector.

New region in Queretaro, Mexico

The Mexico Central (Queretaro) region is now available. The region identifier is mx-queretaro-1. The region key is QRO. This region has one availability domain. For information about regions, see Regions and Availability Domains. For instructions on how to subscribe to the new region, see Managing Regions.

Advanced BIOS settings for bare metal compute instances

When you create a bare metal compute instance, you can now configure advanced BIOS settings that let you optimize performance and reduce licensing costs. The following options are available:

  • Disable cores
  • Customize NUMA settings
  • Disable simultaneous multithreading
  • Enable or disable access control service
  • Enable or disable virtualization instructions
  • Enable or disable the input-output memory management unit (IOMMU)

For more information, see BIOS Settings for Bare Metal Instances.

Extend the reboot migration deadline for Compute VM instances scheduled for infrastructure maintenance

You can now extend the maintenance due date for Compute VM instances that are scheduled for reboot migration due to planned infrastructure maintenance. For more information, see Extending the Deadline for Reboot Migration.

New features added to Network Visualizer

Network Visualizer now allows you to export topology maps and a PDF with relevant resource information. You can also now see more types of resources, including mount targets and Kubernetes clusters. See the documentation for details.

Introducing Flexible Compute Shapes for Model Deployments

You can now use flexible compute shapes for model deployments. 

For APIs, see CreateModelDeployment, and ModelDeploymentInstanceShapeConfigDetails.
For more information, take a look at Data Science.

Media Flow service is now available

Media Flow is a fully managed service for processing media (video) source content, accessible using the Console, REST APIs, or CLI.

You can configure content processing workflows that can be used to process video source content. The processing includes, transcoding, thumbnail generation, ABR packaging, and integration with OCI AI Services such as Speech (for automatic transcription), Language (for NLP-based analysis of the transcript), and Vision (for object detection and text extraction).

Oracle Database Service for Azure

Oracle Database Service for Azure (ODSA) allows you to easily integrate Oracle Cloud Infrastructure’s Database service into your Azure cloud environment. ODSA uses a service-based approach, and is an alternative to manually creating complex cross-cloud deployments for your application stacks. Use ODSA to deploy Exadata, Oracle Base Database, and Oracle Autonomous Database resources that connect to your Azure account using the Oracle Interconnect for Microsoft Azure, a private tunnel connection between supported OCI and Azure regions.

For more information, see About Oracle Database Service for Azure.

Oracle Critical Patch Update (CPU) July 2022 for Oracle Java SE

Java Management supports the 18.0.2,17.0.4,11.0.16,8u341 releases part of the Oracle Critical Patch Update (CPU) July 2022 for Oracle Java SE.

Stack Monitoring CDB and PDB Support

Stack Monitoring can now discover and monitor Oracle Multitenant Container Databases (CDBs) and Pluggable Databases (PDBs) running on on-premises hosts or on OCI Compute instances.

For more information, see Stack Monitoring (Resource Discovery).

Media Streams is now available

Media Streams is a fully managed service for delivering and streaming of media (video) source content, accessible using the Console, REST APIs, or CLI.

You can deliver digital video packaged in a format such as HTTP Live Streaming (HLS) to viewers. You can ingest pre-packaged HLS packages or can use Media Flow to transcode and package a source video into a format suitable for streaming. Media Streams can be configured to act as the origin service or video distribution through Akamai.

For more information, see Media Streams.

OCI Network Firewall Service is now availabile

Oracle Cloud Infrastructure Network Firewall is a next-generation managed network firewall and intrusion detection and prevention service for your Oracle Cloud Infrastructure virtual cloud network (VCN), powered by Palo Alto Networks®.

Network Firewall features include:

Oracle Cloud Infrastructure Network Firewall provides the following security features:

  • Stateful network filtering: Create stateful network filtering rules that allow or deny network traffic based on source IP (IPv4 and IPv6), destination IP (IPv4 and IPv6), port, and protocol.
  • Custom URL and FQDN filtering : Restrict ingress and egress traffic to a specified list of fully qualified domain names (FQDNs), including wild cards and custom URLs.
  • Intrusion Detection and Prevention (IDPS): Monitor your network for malicious activity. Log information, report, or block the activity.
  • SSL inspection: Decrypt and inspect TLS-encrypted traffic with ESNI support for security vulnerabilities. Encrypted Server Name Indication (ESNI) is a TLSv1.3 extension that encrypts the Server Name Indication (SNI) in the TLS handshake.
  • Inter-VCN traffic inspection: Route traffic between two VCNs through a network firewall.

For more information, see:

AWR Explorer for Operations Insights

You can now use AWR Explorer in Operations Insights to compare database performance data stored in AWR Hub. 

Using AWR Explorer in Operations Insights lets you:

  • View and analyze AWR data across different database systems
  • Easily identify performance trends without needing to toggle between hourly AWR reports
  • Visualize different aspects of Oracle Database performance data which can be helpful in detecting performance issues

CloudShell now offers GraalVM Enterprise JDK 17 and Native Image

Now you can easily use GraalVM Enterprise in Cloud Shell to build and test simple Java applications with Micronaut, Spring, and other microservices frameworks.

For more information, see Using GraalVM Enterprise in OCI Cloud Shell.

TCPS Support for Oracle Cloud Databases

You can now use the TCP/IP with Transport Layer Security (TCPS) protocol when enabling Database Management for Oracle Cloud Databases. For more information, see Enable Database Management for Oracle Cloud Databases

MySQL Database Service Support for MySQL Version 8.0.30

MySQL Database Service now supports MySQL 8.0.30. New MySQL DB systems are based on the latest MySQL Database version. MySQL Server upgrades for existing DB systems, such as from version 8.0.29 to 8.0.30, must be performed manually.

The new minor version includes improvements and bug fixes. For more information, see MySQL 8.0.30 Release Notes.

Exadata Cloud@Customer: Enhanced Control to Rollback or Retry Failed Guest VM Operating System Update

You need not mandatorily roll back if applying the Guest VM operating system update fails. A new option, in addition to the current rollback option, has been added to retry and apply the failed update. If you want to apply a different operating system image update on failure, then you will have to first roll back and then apply.

For more information, see: Using the Console to Rollback or Retry Failed Guest VM Operating System Update

BDS Updates to autoscaling and customer-managed encryption key features

Updates to BDS autoscaling and customer managed encryption key features:

  • Added schedule-based options for horizontal and vertical autoscaling on ODH clusters.
  • Use customer-managed encryption keys for BDS clusters.
  • Update existing clusters to use customer-managed encryption keys.

Exadata Cloud@Customer: Monthly ExaDB-C@C Infrastructure Security Maintenance

Security maintenance, performed alongside the quarterly maintenance, is executed once a month and includes fixes for vulnerabilities with CVSS scores greater than 7.

For more information, see: Overview of Monthly Security Maintenance

Introducing Runtime Configuration for Notebook Sessions

You can now set up your notebook sessions with your often used custom environment variables and Git repos to be ready for use when you open your notebook. See Using a Runtime Configuration.

For more information, see Data Science. Take a look at our Data Science blog.

More information please refer OCI Documentation.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

What’s New in Oracle Cloud Infrastructure ?

Week of July 4th

Many IT and security leaders today are faced with complex IT infrastructures and growing cybersecurity threats. Download the recent ebook to discover the five trends in cloud security that can help reduce complexity and strengthen cyber resilience.

This new reference architecture walks you through using the graph capabilities built into the Oracle Database – so you do not need a separate Graph database to analyze data connections for common use cases like customer trends insights, fraud detection, improved traceability in smart manufacturing, and more.

Learn how you can use Resource Manager to access private resources on OCI or on-premises

Week of June 27th

Since its launch, OCI Dedicated Region now requires 60-75% less data center space and power on average, with a significantly lower entry price: a starting usage commitment of approximately $1 million a year for a typical customer. This is a unique opportunity for you to benefit from all OCI services within your own premises. Learn all about it and watch the announcement event.

After going public in 2020 and seeing a huge burst in sales during the coronavirus pandemic, Albertsons needed a fast and cost-effective way to scale its human resource operations for the company’s nearly 300,000 employees. They also required a secure method for external vs internal access. With its on-premises human resource (HR) applications nearing end of life, the $70 billion grocery giant decided to migrate those applications to Oracle Cloud Infrastructure (OCI). See how Albertsons leveraged OCI for their PeopleSoft deployment here and drill down into more detail about the unique network configuration here.

Watch this short podcast episode where we chat with Ian Brunton, Engineering Manager, Red Bull Racing about their partnership with OCI and how data and a performant cloud helps win races!

Follow this step-by-step tutorial to learn how to use Terraform to create and configure OCI resources such as instance pools and load balancers, and to configure autoscaling rules based on key usage metrics.

Week of June 20th

For apps using HTTP, HTTPS or HTTP/2, you can now leverage the new caching and compression service for OCI load balancers to render your web app faster and decrease the load on your backend servers. 

Centrally manage usage across all your organization’s tenancies, share subscription credits, and enforce common cost and governance policies.

The latest release of the OCI Big Data service boasts a slew of major features – including Autoscaling, support for AMD Flex shapes, preconfigured JupyterHub as well as Presto (Trino) that can be managed through Ambari, bootstrap scripts, patch management, and more.

This step-by-step tutorial walks you through installing Jenkins and setting up DR using OCI File Storage. This enables you to set up your Jenkins Controller with automatic failover to ensure reliable operations.

In this first in a series of Built & Deployed videos with Albertsons, we explore their footprint in OCI with and emphasis on their PeopleSoft deployment and the specifics of their multi-VCN architecture. See how they scaled quickly & cost effectively to meet pandemic demand with the help of OCI here

Week of June 13th

Cloud has evolved to the point that we are now living in a multicloud reality. Standards will help disparate clouds interact with each other much more easily and benefit the entire ecosytem.
Oracle is doing its part by following a Cloud Adoption Framework. Find out more about our updates here and see how we stack up to the competition here.

OCI new E4 DenseIO bare metal provides up to twice the number of cores – up to 128 cores, 2.5 times the memory – up to 2TB, and two times the networking – up to 100Gbps, compared to our previous generation of DenseIO2 instances. And with the newer generation of NVMe SSDs on E4 DenseIO, you get up to double the IOPS and 50% higher price-performance than DenseIO2 instances. E4 DenseIO supports both bare metal and our flexible compute virtual machine (VM) instances.

Find out how EZ Cloud reduced payment delays, and eliminated fraudulent transactions with their cloud-native A/P application on Oracle Cloud.

Check out the recent reference architecture to discover how you can deploy Microsoft Remote Desktop Services on OCI, providing a secured, HA environment for your users to be able to run their applications and desktops from the cloud.

 Our Karan Batta talks with Zoe Chilton, Head of Strategic Partnership, from Red Bull Racing about the latest on their partnership with Oracle to improve business efficiency and win more races.

Week of June 6th

Discover how Children’s Medical Research Institute (CMRI) uses Artificial Intelligence (AI) and OCI Data Science to advance healthcare research in curing children’s cancer. OCI helps CMRI make the most out of their data while improving efficiencies 30-50%.

The 11th Interconnect region between OCI and Azure Cloud is now live in Singapore, providing a private, dedicated low-latency connection and identity federation for multicloud use cases.

Read how this new integration allows you to fully provision your FastConnect virtual circuits with Colt all from a single pane of glass from within the Oracle Cloud Console. This new integration is available for both private and public peerings.

Watch the short video to discover how APL Logistics leveraged OCI to accelerate digitization, and reinvent the user experience of their legacy application, cutting costs and improving time-to-market. Learn more.

Week of May 30th

Earlier this week, Oracle introduces Network Firewall powered by PaloAlto Networks, Oracle Threat Intelligence, Oracle Cloud Guard Threat Detector, Oracle Security Zones, and Oracle Cloud Guard Fusion Applications Detector.  Watch this short video to see a demo of all the new services and capabilities and learn more here.

License Manager is a free service that makes it easier for you to Bring Your Own License (BYOL) to OCI with the following capabilities: Automating the license portability from on-prem license to cloud, tracking license utilization, and reporting BYOL resources that have licensing needs.

The new API Usage Plans provide organizations with insights into how their APIs are used by their internal developers and across their external ecosystem. In addition to monitoring their usage, organizations can also unlock new revenue streams by monetizing their APIs with usage plans and subscriptions.

For Premier League, data is bringing fans closer to the game. By leveraging OCI Data Science, Autonomous Data Warehouse and Analytics, they are able to brag and root for their favorite players and teams in new and exciting ways. In fact, data was used as the key driver in two new awards added this year, Most Improbable Comeback and Most Powerful Goal. Billions of data points across the season were crunched to confirm the winners… and this is just the start! Check out how this is calculated here.

Week of May 23rd

As more companies adopt multiple cloud providers to run their applications, you can now seamlessly connect Azure services, like Analytics and AI to Oracle Cloud services. Today, we have over 10 OCI and Azure cloud interconnect regions with more to come. See this latest reference architecture for PeopleSoft on OCI that includes a DR site on Azure.

Maven security scanning is now available as part of build pipelines in OCI DevOps service, as well as Helm chart deployments to Kubernetes clusters. We’ve also improved our other developer tools- with the new Interactive Mode in OCI CLI, and added BitBucket cloud support to the code repo (in addition to the available GitHub and Gitlab connectors).

Researchers in the University of Melbourne ingest, analyze and make predictions based on data from large volumes of Raspberry Pi edge IoT devices. Read this blog to discover their architecture, and watch the short video for an interesting example of running FoguBus2 on OCI, leveraging Oracle Autonomous Data Warehouse and Oracle Machine Learning.

Week of May 16th

Easily ingest, search, visualize, and analyze data using OCI Search service for OpenSearch – high performant solution with none of the management overhead.

Multicloud architectures allow organizations to leverage the best services from each cloud along with consistent deployment and management of workloads across environments. Check out our recent article on TechCrunch, as well as the new multicloud reference architecture and offering to help you navigate the brave new world of multicloud.

PUNCH Torino, formerly the global center of excellence for General Motors (GM), is using OCI High-Performance Computing (HPC) to design, model and simulate the next generation of zero-emission engines. Watch the short video to discover the architecture for their solution for predicting flow distribution, pressure loss, heat transfer, and combustion, as well as their performance on OCI.

Accelerate diagnosing of any network issues with Virtual test access point (VTAP) – a new network troubleshooting service that automatically copies traffic that traverses a specific point in the network and sends it to a packet collector or network analytics tool for further analysis.

Watch the video to discover their architecture combining remote desktop server, Autonomous Database (ADB) and APEX.

Disclaimer: The views expressed on this document are my own and do not necessarily reflect the views of Oracle.