Prerequisites for a Public Endpoint
Before you create an Oracle Analytics Cloud instance that's accessible from the public internet, consider whether or not your organization wants to restrict incoming traffic (ingress).
No Restrictions
No prerequisites. If you want Oracle Analytics Cloud to be accessible from anywhere, you can create the Oracle Analytics Cloud instance with no access control.
Restrict Access to a Specific IP Address or CIDR Block Range
If you plan to limit incoming traffic (ingress) from a specific IP address or CIDR block range, record all the IP addresses or CIDR ranges that you want to allow. When you create your Oracle Analytics Cloud instance, you use this information to define one or more access control rules for Oracle Analytics Cloud.
Restrict Access to a Specific VCN
If you plan to limit access to traffic from a specific Oracle Cloud Infrastructure VCN, ensure that the VCN exists and you have the required policies to access the VCN.
-
Set up an Oracle Cloud Infrastructure VCN in the same region as the Oracle Analytics Cloud instance you plan to create.
-
Set up a service gateway in your VCN, and a route table to send traffic to Oracle Analytics Cloud through the service gateway.
-
Ensure that you (or whoever plans to create the Oracle Analytics Cloud instance) have the required policies to access the VCN.
-
READ policy for the compartment:
ALLOW GROUP <ANALYTICS ADMIN GROUP> TO READ compartments IN TENANCY -
READ policy for the VCN:
ALLOW GROUP <ANALYTICS ADMIN GROUP> TO READ virtual-network-family IN TENANCY
-
READ policy for the compartment:
Restrict Access to Oracle Services
No prerequisites. After creating your instance, you can add a single access control rule that allows all trusted Oracle Services in your region to access your Oracle Analytics Cloud instance.