[oracle@cman trace]$ oerr ora 28725\n28725, 00000, \"invalid CMAN in Traffic Director mode configuration\\n\"\n\/\/ *Cause: An attempt was made to connect to Connection Manager (CMAN) in\n\/\/ Traffic Director mode with an invalid configuration.\n\/\/ *Action: Correct the configuration of CMAN in Traffice Director mode before\n\/\/ starting it. Check and correct the wallet credentials and proxy\n\/\/ authorization. Check with CMAN in Traffic Director mode\n\/\/ administrator to get more information from traces and sqlnet.log.\n[oracle@cman trace]$ <\/code><\/pre>\n\n\n\nSo that’s expected, because we do not have the proxy user rights granted for cbleile2.<\/p>\n\n\n\n
The test results now were as follows:<\/p>\n\n\n\n
sqlplus cbleile1\/cbleile1@pdb1_cman
-> works.<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@pdb1_cman
-> ORA-28725<\/p>\n\n\n\n
sqlplus cbleile1\/cbleile1@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules<\/p>\n\n\n\n
tns-alias with a non-existing service:
sqlplus cbleile2\/cbleile2@non_existing_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules<\/p>\n\n\n\n
wrong password:
sqlplus cbleile1\/cbleile2@pdb1_cman
ORA-01017: invalid username\/password; logon denied<\/p>\n\n\n\n
So everything works as expected from one server. The important step is to only alter user cbleile1 to grant connect through TDM1, but not cbleile2.<\/p>\n\n\n\n
Test 2<\/h3>\n\n\n\n
Rules:<\/p>\n\n\n\n
1 – The Client1 19cClient should be allowed to connect to DB cdb1, PDB pdb1, User cbleile1<\/p>\n\n\n\n
2 – The Client1 19cClient should not be allowed to connect to DB cdb1, PDB pdb1, User cbleile2<\/p>\n\n\n\n
3 – The Client1 19cClient should NOT be allowed to connect to DB ncdb1<\/p>\n\n\n\n
4 – The Client2 12cR2Client should be allowed to connect to DB cdb1, PDB pdb1, User cbleile2<\/p>\n\n\n\n
5 – The Client2 12cR2Client should NOT be allowed to connect to DB cdb1, PDB pdb1, User cbleile1<\/p>\n\n\n\n
I.e. the first 3 rules are the same as in Test 1, but I added the rules 4 and 5 to have another client to be allowed to connect to user cbleile2 only (and not to cbleile1). I.e. the 19cClient should only be allowed to connect to cbleile1 and the 12cR2Client should only be allowed to connect to cbleile2. <\/p>\n\n\n\n
First I’m creating a new TDM2-User on PDB pdb1 with proxy-rights to become cbleile2:<\/p>\n\n\n\n
CREATE USER TDM2 IDENTIFIED BY tdm2pwd;\nGRANT CREATE SESSION TO TDM2;\nALTER USER cbleile2 GRANT CONNECT THROUGH TDM2;<\/code><\/pre>\n\n\n\nThen I add the alias pdb1_2 to the wallet on the cman server:<\/p>\n\n\n\n
[oracle@cman admin]$ mkstore -wrl \/u01\/app\/oracle\/network\/admin\/wallet -createCredential pdb1_2 tdm2 tdm2pwd<\/code><\/pre>\n\n\n\nAnd add an entry in the tnsnames.ora on the cman server:<\/p>\n\n\n\n
pdb1_2=\n (DESCRIPTION =\n (ADDRESS =\n (PROTOCOL = TCP)(HOST = 19c-dg1)(PORT = 1521)\n )\n (CONNECT_DATA = (SERVICE_NAME=pdb1)\n )\n )<\/code><\/pre>\n\n\n\nIn addition add the rules to the $TNS_ADMIN\/cman.ora:<\/p>\n\n\n\n
cman = (configuration=\n (address=(protocol=tcp)(host=cman.localdomain)(port=1999))\n (parameter_list =\n (tdm=true)\n (tdm_threading_mode=dedicated)\n (tdm_shared_threads_min=5)\n (tdm_shared_threads_max=20)\n (log_level=ADMIN)\n (max_connections=1024)\n (idle_timeout=0)\n (registration_invited_nodes = *)\n (inbound_connect_timeout=0)\n (session_timeout=0)\n (outbound_connect_timeout=0)\n (max_gateway_processes=16)\n (min_gateway_processes=2)\n (remote_admin=on)\n (trace_level=off)\n (max_cmctl_sessions=4)\n (event_group=init_and_term,memory_ops)\n )\n (rule_list=\n (rule=\n (src=cman)(dst=127.0.0.1)(srv=cmon)(act=accept)\n (action_list=(aut=off)(moct=0)(mct=0)(mit=0)(conn_stats=on))\n ) \n (rule=\n (src=19cClient)(dst=19c-dg1)(srv=pdb1)(act=accept)\n (action_list=(aut=off)(moct=0)(mct=0)(mit=0)(conn_stats=on))\n )\n (rule=\n (src=19cClient)(dst=19c-dg1)(srv=ncdb1)(act=reject)\n (action_list=(aut=off)(moct=0)(mct=0)(mit=0)(conn_stats=on))\n )\n (rule=\n (src=12cr2Client)(dst=19c-dg1)(srv=pdb1_2)(act=accept)\n (action_list=(aut=off)(moct=0)(mct=0)(mit=0)(conn_stats=on))\n )\n (rule=\n (src=12cr2Client)(dst=19c-dg1)(srv=ncdb1)(act=reject)\n (action_list=(aut=off)(moct=0)(mct=0)(mit=0)(conn_stats=on))\n )\n<\/strong> )\n)\nwallet_location = (source = (method = file) (method_data = (directory=\"\/u01\/app\/oracle\/network\/admin\/wallet\")))\nsqlnet.wallet_override = true<\/code><\/pre>\n\n\n\nOn the client I do add a tnsnames-entry with service pdb1_2:<\/p>\n\n\n\n
pdb1_cman=\n (DESCRIPTION =\n (SOURCE_ROUTE = YES)\n (ADDRESS =\n (PROTOCOL = TCP)(HOST = cman)(PORT = 1999)\n )\n (ADDRESS =\n (PROTOCOL = TCP)(HOST = 19c-dg1)(PORT = 1521)\n )\n (CONNECT_DATA = (SERVICE_NAME=pdb1_2)\n )\n )<\/code><\/pre>\n\n\n\nTest a connection to cbleile1, which should not be allowed:<\/p>\n\n\n\n
oracle@12cr2:\/home\/oracle\/ [prem122] sqlplus cbleile1\/cbleile1@pdb1_cman\n\nSQL*Plus: Release 12.2.0.1.0 Production on Fri Apr 14 14:28:38 2023\n\nCopyright (c) 1982, 2016, Oracle. All rights reserved.\n\nERROR:\nORA-28725: Message 28725 not found; product=RDBMS; facility=ORA\n\n\n\nERROR:\nORA-28725: Message 28725 not found; product=RDBMS; facility=ORA\n\n\n\nError accessing PRODUCT_USER_PROFILE\nWarning: Product user profile information not loaded!\nYou may need to run PUPBLD.SQL as SYSTEM\nERROR:\nORA-28725: Message 28725 not found; product=RDBMS; facility=ORA\n\n\n\nError accessing package DBMS_APPLICATION_INFO\nSP2-0575: Use of Oracle SQL feature not in SQL92 Entry Level.\nSQL> \n<\/code><\/pre>\n\n\n\nAgain, the error is ORA-28725 is not available on release 12cR2, that’s why no messages were found for the error. Anyway, the result is good, because we cannot connect from the second client to our DB user cbleile1. I.e. that’s what I wanted. Can I connect to cbleile2?<\/p>\n\n\n\n
oracle@12cr2:\/home\/oracle\/ [prem122] sqlplus cbleile2\/cbleile2@pdb1_cman\n\nSQL*Plus: Release 12.2.0.1.0 Production on Fri Apr 14 14:29:19 2023\n\nCopyright (c) 1982, 2016, Oracle. All rights reserved.\n\nLast Successful login time: Fri Apr 14 2023 14:21:45 +02:00\n\nConnected to:\nOracle Database 19c Enterprise Edition Release 19.0.0.0.0 - Production\nconnected via Oracle Connection Manager in Traffic Director mode 21.9.0.0.0<\/strong>\n\nSQL> <\/code><\/pre>\n\n\n\nYes, that worked – as intended.<\/p>\n\n\n\n
Summary of the tests<\/h3>\n\n\n\n
From 19cClient (Client1):<\/strong><\/p>\n\n\n\nsqlplus cbleile1\/cbleile1@pdb1_cman
-> works. OK.<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@pdb1_cman
-> ORA-28725. OK.<\/p>\n\n\n\n
sqlplus cbleile1\/cbleile1@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
tns-alias with a non-existing service:
sqlplus cbleile2\/cbleile2@non_existing_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
wrong password:
sqlplus cbleile1\/cbleile2@pdb1_cman
ORA-01017: invalid username\/password; logon denied
–> OK.<\/p>\n\n\n\n
From 12cr2Client (Client2):<\/strong><\/p>\n\n\n\nsqlplus cbleile1\/cbleile1@pdb1_cman
-> ORA-28725. OK.<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@pdb1_cman
-> works. OK.<\/p>\n\n\n\n
sqlplus cbleile1\/cbleile1@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
sqlplus cbleile2\/cbleile2@ncdb1_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
tns-alias with a non-existing service:
sqlplus cbleile2\/cbleile2@non_existing_cman
-> rejected: ORA-12529: TNS:connect request rejected based on current filtering rules
-> OK.<\/p>\n\n\n\n
wrong password:
sqlplus cbleile2\/cbleile1@pdb1_cman
ORA-01017: invalid username\/password; logon denied
–> OK.<\/p>\n\n\n\n
Summary<\/h2>\n\n\n\n
The tests showed that setting up rules to allow specific clients (IP addresses) to connect only to specific DBs and specific users inside that DB is possible. The technology used is the Oracle Connection Manager in Traffic Director Mode (TDM). TDM is available from Oracle 18c onwards, but I do recommend to install the latest version 21c (as of the time when writing this blog).<\/p>\n","protected":false},"excerpt":{"rendered":"
Problem description In a recent consulting assignment I got the following task: A server with a specific IP address (Application server or Oracle Client) should be able to connect to a specific DB-user only. E.g. a single application server responsible for reports should be able to only connect to a specific read-only-user in the database. […]<\/p>\n","protected":false},"author":35,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[59],"tags":[2925,2929,2363,96,2924,2927,2928],"type_dbi":[],"class_list":["post-24630","post","type-post","status-publish","format-standard","hentry","category-oracle","tag-cman","tag-filter","tag-firewall","tag-oracle","tag-oracle-connection-manager","tag-tdm","tag-traffic-director-mode"],"acf":[],"yoast_head":"\n
Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User? - dbi Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?\" \/>\n<meta property=\"og:description\" content=\"Problem description In a recent consulting assignment I got the following task: A server with a specific IP address (Application server or Oracle Client) should be able to connect to a specific DB-user only. E.g. a single application server responsible for reports should be able to only connect to a specific read-only-user in the database. […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\" \/>\n<meta property=\"og:site_name\" content=\"dbi Blog\" \/>\n<meta property=\"article:published_time\" content=\"2023-04-18T10:30:30+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-29T23:14:01+00:00\" \/>\n<meta name=\"author\" content=\"Clemens Bleile\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@ifgtxD2SrQ8r!YuXj\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Clemens Bleile\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\"},\"author\":{\"name\":\"Clemens Bleile\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da\"},\"headline\":\"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?\",\"datePublished\":\"2023-04-18T10:30:30+00:00\",\"dateModified\":\"2024-01-29T23:14:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\"},\"wordCount\":1334,\"commentCount\":10,\"keywords\":[\"CMAN\",\"filter\",\"FireWall\",\"Oracle\",\"Oracle Connection Manager\",\"TDM\",\"Traffic Director Mode\"],\"articleSection\":[\"Oracle\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\",\"url\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\",\"name\":\"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User? - dbi Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#website\"},\"datePublished\":\"2023-04-18T10:30:30+00:00\",\"dateModified\":\"2024-01-29T23:14:01+00:00\",\"author\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.dbi-services.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#website\",\"url\":\"https:\/\/www.dbi-services.com\/blog\/\",\"name\":\"dbi Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.dbi-services.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da\",\"name\":\"Clemens Bleile\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g\",\"caption\":\"Clemens Bleile\"},\"description\":\"Clemens Bleile has more than 30 years of IT experience, thirteen in Oracle Support and fifteen in Oracle Consulting. He is specialized in Oracle Database Performance Tuning (SQL Tuning, DB Tuning) and developing an Oracle DB IT architecture (highly available, low-maintenance, cost efficient storage of data). He is an expert in problem analysis and resolution. Prior to joining dbi services, Clemens Bleile was Manager of the EMEA Database Performance team at the Oracle Global Customer Support Services. Clemens Bleile is Oracle Certified Professional 11g, 12c and Oracle Certified Expert for Performance Management and Tuning and holds a Master Degree, Business Information Systems from the Fachhochschule Furtwangen, Germany.\",\"sameAs\":[\"https:\/\/www.dbi-services.com\",\"https:\/\/x.com\/ifgtxD2SrQ8r!YuXj\"],\"url\":\"https:\/\/www.dbi-services.com\/blog\/author\/clemens-bleile\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User? - dbi Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/","og_locale":"en_US","og_type":"article","og_title":"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?","og_description":"Problem description In a recent consulting assignment I got the following task: A server with a specific IP address (Application server or Oracle Client) should be able to connect to a specific DB-user only. E.g. a single application server responsible for reports should be able to only connect to a specific read-only-user in the database. […]","og_url":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/","og_site_name":"dbi Blog","article_published_time":"2023-04-18T10:30:30+00:00","article_modified_time":"2024-01-29T23:14:01+00:00","author":"Clemens Bleile","twitter_card":"summary_large_image","twitter_creator":"@ifgtxD2SrQ8r!YuXj","twitter_misc":{"Written by":"Clemens Bleile","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#article","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/"},"author":{"name":"Clemens Bleile","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da"},"headline":"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?","datePublished":"2023-04-18T10:30:30+00:00","dateModified":"2024-01-29T23:14:01+00:00","mainEntityOfPage":{"@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/"},"wordCount":1334,"commentCount":10,"keywords":["CMAN","filter","FireWall","Oracle","Oracle Connection Manager","TDM","Traffic Director Mode"],"articleSection":["Oracle"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/","url":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/","name":"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User? - dbi Blog","isPartOf":{"@id":"https:\/\/www.dbi-services.com\/blog\/#website"},"datePublished":"2023-04-18T10:30:30+00:00","dateModified":"2024-01-29T23:14:01+00:00","author":{"@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da"},"breadcrumb":{"@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.dbi-services.com\/blog\/oracle-is-it-possible-to-setup-a-system-that-a-client-specific-ip-address-can-only-connect-to-a-specific-db-user\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.dbi-services.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Oracle: Is it possible to setup a system that a client (specific IP address) can only connect to a specific DB-User?"}]},{"@type":"WebSite","@id":"https:\/\/www.dbi-services.com\/blog\/#website","url":"https:\/\/www.dbi-services.com\/blog\/","name":"dbi Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.dbi-services.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.dbi-services.com\/blog\/#\/schema\/person\/0ac04011f60f2e93c115358d0789c2da","name":"Clemens Bleile","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1f596609fc67cb28ed714e7bccc81ed4cd73b8582a8148a490c77daeb2fde21a?s=96&d=mm&r=g","caption":"Clemens Bleile"},"description":"Clemens Bleile has more than 30 years of IT experience, thirteen in Oracle Support and fifteen in Oracle Consulting. He is specialized in Oracle Database Performance Tuning (SQL Tuning, DB Tuning) and developing an Oracle DB IT architecture (highly available, low-maintenance, cost efficient storage of data). He is an expert in problem analysis and resolution. Prior to joining dbi services, Clemens Bleile was Manager of the EMEA Database Performance team at the Oracle Global Customer Support Services. Clemens Bleile is Oracle Certified Professional 11g, 12c and Oracle Certified Expert for Performance Management and Tuning and holds a Master Degree, Business Information Systems from the Fachhochschule Furtwangen, Germany.","sameAs":["https:\/\/www.dbi-services.com","https:\/\/x.com\/ifgtxD2SrQ8r!YuXj"],"url":"https:\/\/www.dbi-services.com\/blog\/author\/clemens-bleile\/"}]}},"_links":{"self":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/24630","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/users\/35"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/comments?post=24630"}],"version-history":[{"count":9,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/24630\/revisions"}],"predecessor-version":[{"id":30589,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/posts\/24630\/revisions\/30589"}],"wp:attachment":[{"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/media?parent=24630"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/categories?post=24630"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/tags?post=24630"},{"taxonomy":"type","embeddable":true,"href":"https:\/\/www.dbi-services.com\/blog\/wp-json\/wp\/v2\/type_dbi?post=24630"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}