2
Modernization….but
Robustness
3
Open Platform….but
Secure
4
Customizable….but
Standard
5
INFRASTRUCTURE
6
Traditional Infrastructure Planning
Expensive Idle Redundancy
3rd party
backup software Storage Array Matching Storage
3rd party volume manager Array
and file system…
7
Today s High Availability Requirements
From Oracle Customers
8
Oracle s HA Design Principles
1. Complete
– Minimize all planned and unplanned downtime
– Offer a standard validated platform for maximum availability
9
Oracle s Database HA Solution Set
Database Integration Unique in the Industry!
Planned Data
Online Redefinition
Downtime Changes
10
Best-of-Breed Server Availability
At Lowest Cost
System
Changes
Planned Data
Downtime Changes
App
Changes
11
Real Application Clusters
Virtualize Low-cost Servers
HR SALES ERP
12
Best-of-Breed Data Availability
At Lowest Cost
Server
Availability
Flashback
Unplanned RMAN
Downtime Data Oracle Secure Backup
Availability ASM
Data Guard
GoldenGate
13
Traditional
Flashback Technologies 80
Recovery
Recovery Time
• Flashback revolutionizes error recovery 40
– View good data as of a past point-in-time
– Simply rewind data changes
20
Flashback
– Time to correct error equals time to make error 0
14
Oracle Backup & Recovery
Integrated Disk, Tape & Cloud Backup
Oracle Enterprise
Manager • Recovery Manager (RMAN) provides
the infrastructure for Oracle s
Integrated Backup & Recovery
Oracle Secure
Backup • Intrinsic knowledge of database file
formats and recovery procedures
• Block validation
RMAN
• Online block-level recovery
• Unused block compression
• Online, multi-streamed backup
• Native encryption
Tape Drive • Multiple compression levels (11.2)
15
Automatic Storage Management (ASM)
Stores & Manages All Data
Database Application 3rd Party FS
ASM
Disk
Group
DB Datafiles, OCR and Voting Files Oracle Binaries 3rd Party File Systems
• ASM supports ALL data - database files, file systems, Clusterware files (OCR, Voting Disk)
• Built-in mirroring protects from disk failures New in 11.2
• Enables auto-repair from corrupt blocks using a valid mirror copy
16
Oracle Data Guard
Best Data Protection
Primary
Database
17
Data Protection with Storage Mirroring?
Primary Site: RAC - All Servers Active DR Site: All Servers Inactive
Database
Instance
Storage
Mirroring
Database
Storage
More info:
http://www.oracle.com/technetwork/database/features/availability/dataguardremotemirroring-086151.html
18
Example: Storage Mirroring Weakness
High Usage of Network Resources
Network I/O
Primary Target
Volumes Volumes
Log
Buffer
Online
Logs Much more
fil
network volume
Archive
Logs Much more
Flashback
network impact
Logs
Control Zero Oracle
Files awareness
Data Poor fault
Files isolation
SYSTEM
USER Idle standby
TEMP
systems
UNDO
Archive
Logs Minimal
Flashback network impact
Logs
Control Strong fault
Files isolation
Data Automatic
Files block repair
SYSTEM
USER Active standby
TEMP systems
UNDO
• Benefits
– Improves primary database performance by offloading processing to standby
– Makes productive use of existing physical standby databases
• Licensing
– Packaged as a separate database Option for Oracle Enterprise Edition
– Requires licensing of the production database and all the physical standbys that
are used for any of the above capabilities
21
Data Guard
Standby Database: Failover Target
Read-write
Workload Fast
Real-time Incremental
Reporting Backups
Continuous redo
shipping, validation & apply
22
Active Data Guard
Standby Database: Offload Production + Failover Target
Read-write Fast
Workload Real-time Incremental
Reporting Backups
Continuous redo
shipping, validation & apply
23
Data Guard vs. Active Data Guard
Zero Impact to Recovery Time Objective (RTO)
24
Best Online Planned Maintenance
At Lowest Cost
Server
Availability
Unplanned
Downtime Data
Availability
25
Online Reconfiguration
Scaling on Demand
• Servers
– Add/Remove RAC nodes online
– No data movement needed
Database • Storage
– Add/Remove ASM disks or arrays online
– Automatically rebalance after storage change
Storage
• Clusterware, ASM
– Upgrade Oracle Clusterware and ASM in an
online manner
26
Online Patching and Upgrades
• Some one-off patches can be applied to a running Oracle instance
– Linux-x86, Solaris 10, HP-UX 11i
– [New in 11.2] Windows 32-bit and Windows 64-bit, AIX v6.1 [TL2 SP1]
27
Oracle GoldenGate
Oracle s Strategic Solution for Information Integration
• Best-in-class leader in real-time data solutions
• Continuous Availability for heterogeneous
systems
• Real-time data access for Reporting & BI/EPM
• Zero-downtime migrations / upgrades to Oracle
Database and Applications
28
Oracle GoldenGate
Architecture
Capture: Committed changes are captured (and can be filtered)
as they occur by reading the transaction logs.
Pump
Source Trail LAN / WAN / Target Trail
Capture Internet Delivery
(TCP/IP)
Pump
29
Oracle GoldenGate
Support for Heterogeneous Databases / Platforms
Databases O/S and Platforms
Oracle GoldenGate Capture:
Oracle Linux
DB2
Sun Solaris
Microsoft SQL Server
Sybase ASE Windows 2000, 2003, XP
Teradata HP NonStop
Enscribe
HP-UX
SQL/MP
SQL/MX
HP OpenVMS
MySQL IBM AIX
JMS message queues IBM z Series
zLinux
Oracle GoldenGate Delivery:
All listed above, plus:
TimesTen, DB2 for IBM System i
Netezza, Greenplum, and HP Neoview
ETL products
30
Powerful Combination!
Integrated HA, DR and Active-Active Replication
Primary
Database Standby
GoldenGate Database
- Information Distribution
- Heterogeneous
Bi-directional
Replication Subsetting MySQL
31
Online Index & Table Redefinition
Copy
Transform
Source Table
Table
Result
Table
Store
Continuous Update Updates
Queries & Tracking
Transform
Updates
Updates
32
Oracle Maximum Availability Architecture
Low-cost, Integrated, Fully Active, High ROI
Production Site Active Replica
Flashback GoldenGate
– Human error – Active-active
correction – Heterogeneous
ASM
– Volume Management
33
Reduce the impact of Data Growth
Partition for performance, management and cost
34
Partitioning Concepts
• Data Partitioning:
– Process of logically and/or physically segmenting data (and
it s associated storage, tables and indexes) into more
manageable pieces, in order to improve manageability and
accessibility.
– Example
• Divide large Applications tables and their indexes such as
GL_BALANCES into smaller segments.
35
Partitioning in the E-Business Suite
36
Options Available
ILM
Archive
Data Storage
Purge
37
Implementing
Purging & Archiving
• Consider
– Data Retention Requirements
– Recovery Requirements
– Data access methods and security
– Storage topology and costs
• Define
– Your archive and purge policy
38
Database Diagnostics Pack
Applications and Application Services Enterprise
Manager
• Diagnostics Pack
• DB EE only
Middleware • Perf. & Availability Monitoring
• Automatic Workload Repository
• Metric Baselines
• Auto. DB Diagnostic Monitor
• Historical Analysis
Oracle • Event Management:
• Notifications
• Metric history, Blackouts
• Memory Access Mode
• System Monitoring Plug-in for
Host, OS , Storage and Network Hosts (for system running DB)
39
Database Tuning Pack
Applications and Application Services Enterprise
Manager
• Tuning Pack
• DB EE only
Middleware
• SQL Tuning Advisor
• SQL Profiles
• Statistical Analysis
• SQL Plan Management
Oracle • SQL Access Advisor
• Index on Table
• Materialized View on Table
• Index on Materialized View
• Reorganize Objects
Host, OS , Storage and Network • Partition Advisor
40
Open Platform….but
Secure
41
Powerful Combination!
Integrated HA, DR and Active-Active Replication
Primary
Database Standby
GoldenGate Database
- Information Distribution
- Heterogeneous
Bi-directional
Replication Subsetting MySQL
42
Oracle Security Inside Out
Database Security
Identity Management
• User Provisioning
• Role Management
Information
• Entitlements Management
• Risk-Based Access Control
Infrastructure
• Virtual Directories
Databases Information Rights Management
Applications
• Document-level access control
Content
• All copies, regardless of
location
(even beyond the firewall)
• Auditing and revocation
43
Oracle Confidential 43
43
Oracle s Comprehensive IdM
Solutions
Identity Admin. Access Management Directory Services
Identity lifecycle Strong authentication Storage
Role management Risk based authorization Virtualization
Organization management Single sign-on Synchronization
Provisioning Federation & STS
Reconciliation Fine grained entitlements
Password management Web Services security
Operating systems security
44
Oracle Access Manager
Oracle HTTP Server Deployed
Application
Authentication
OAM Webgate agent Local User
Store
End User
Authentication WebLogic Server
Decisions
LDAP
Authentication User
Authentication Flexibility to use other LDAP
servers for Authentication
Optional with Decisions
OAM Oracle Access Manager
45
Oracle eSSO Suite
Oracle Enterprise SSO (Desktop/Legacy)
• Benefits
– Eliminates forgotten passwords for Windows
desktop and applications
– Improves security & user experience
– Meet regulatory compliance
• Features
– Sign-on to any Windows, web, host, mainframe or Java application
– Use any combination of tokens, smart cards, biometrics and
passwords
– Auto inactive session termination and application shutdown for
shared workstation
– Reset Windows password directly from locked workstation
46
Oracle Adaptive Access Manager
User Context
3RD Party Apps/Data
Context
Location Device Context
ARM
Historical Data
47
Oracle s Comprehensive IdM
Solutions
Identity Admin. Access Management Directory Services
Identity lifecycle Strong authentication Storage
Role management Risk based authorization Virtualization
Organization management Single sign-on Synchronization
Provisioning Federation & STS
Reconciliation Fine grained entitlements
Password management Web Services security
Operating systems security
48
Oracle Identity Administration
49
Role Based User Provisioning
Oracle Identity Manager
GRANT
REVOKE
GRANT
REVOKE
GRANT
REVOKE
50
Sample Out-of-The-Box Connectors
Database Servers Directory Servers
RACF ACF2
AS/400 TopSecret
51 51
Oracle s Comprehensive IdM
Solutions
Identity Admin. Access Management Directory Services
Identity lifecycle Strong authentication Storage
Role management Risk based authorization Virtualization
Organization management Single sign-on Synchronization
Provisioning Federation & STS
Reconciliation Fine grained entitlements
Password management Web Services security
Operating systems security
52
Identity Analytics
54
Oracle Internet Directory
• LDAP storage built upon Oracle database
• Full functional meta directory with Directory Integration
Platform (DIP) component
• Integrated into Oracle Fusion Middleware and
applications
• High performance and scalability with 2-billion-entry
benchmark
• Maximum availability with multi-layer HA including
LDAP replications and Oracle RAC etc
• Extreme security with database vault and encryption in
addition to LDAP access control
55
Database Defense-in-Depth
Encryption and Masking
• Oracle Advanced Security
• Oracle Secure Backup
• Oracle Data Masking
Access Control
• Oracle Database Vault
• Oracle Label Security
Auditing and Tracking
• Oracle Audit Vault
• Oracle Configuration Management
• Oracle Total Recall
56 56
Database Security – Big Picture
Audit
Consolidation
New!
Unauthorized DBA Activity
Procurement
Sensitive
Auditing
Multi-factor Authorization
HR
Confidential
Authorization
DB Consolidation Security
Applications Public
Rebates
Authentication
Network
SQL
Monitoring
and
Blocking
Encrypted Encrypted Encrypted Data
Database Backups Traffic Masking
57 57
Database Defense-in-Depth
Encryption and Masking
• Oracle Advanced Security
• Oracle Secure Backup
• Oracle Data Masking
Access Control
• Oracle Database Vault
• Oracle Label Security
Auditing and Tracking
• Oracle Audit Vault
• Oracle Configuration Management
• Oracle Total Recall
58 58
Oracle Advanced Security
Transparent Data Encryption
Disk
Backups
Exports
Application
Off-Site
Facilities
59 59
Oracle Advanced Security
Network Encryption & Strong Authentication
60 60
Oracle Data Masking
Irreversible De-Identification
Production Non-Production
LAST_NAME SSN SALARY LAST_NAME SSN SALARY
61 61
Database Defense-in-Depth
Encryption and Masking
• Oracle Advanced Security
• Oracle Secure Backup
• Oracle Data Masking
Access Control
• Oracle Database Vault
• Oracle Label Security
Auditing and Tracking
• Oracle Audit Vault
• Oracle Configuration Management
• Oracle Total Recall
62 62
Oracle Database Vault
Privileged Account Controls
Procurement
DBA
HR
Application
Finance
63 63
Oracle Database Vault
Multi-Factor Access Control
Procurement
HR
Application Rebates
64 64
Oracle Database Vault
Built-In Factors
65 65
Oracle Database Vault
Command Rules
66 66
Oracle Label Security
Data Classification for Access Control
Sensitive
Transactions
Confidential
Report Data
Public
Reports
Confidential Sensitive
67 67
Database Defense-in-Depth
Encryption and Masking
• Oracle Advanced Security
• Oracle Secure Backup
• Oracle Data Masking
Access Control
• Oracle Database Vault
• Oracle Label Security
Auditing and Tracking
• Oracle Audit Vault
• Oracle Configuration Management
• Oracle Total Recall
68 68
Oracle Audit Vault
Automated Activity Monitoring & Audit Reporting
HR Data ! Alerts
Built-in
CRM Data Reports
Audit
Data Custom
ERP Data Reports
Databases Policies
Auditor
69 69
70 70
71 71
Database Defense-in-Depth
Encryption and Masking
• Oracle Advanced Security
• Oracle Secure Backup
• Oracle Data Masking
Access Control
• Oracle Database Vault
• Oracle Label Security
Auditing and Tracking
• Oracle Audit Vault
• Oracle Configuration Management
• Oracle Total Recall
72 72
Oracle Database Firewall
First Line of Defense
Allow
Log
Alert
Substitute
Applications Block
73 73
Oracle Database Firewall
Positive Security Model Based Enforcement
White List
Allow
Block
Applications
74 74
Oracle Database Firewall
Architecture
In-Line Blocking and
Monitoring
Out-of-Band
Inbound Monitoring
SQL Traffic
HA Mode
Management Policy
Server Analyzer
75 75
Oracle Database Security Solutions
Inside. Outside. Complete.
76 76
Customizable….but
Standard
77
INTEGRATION AND BUSINESS
PROCESS
78
Business Processes are Evolving…
from sequential and siloed… Example: Bank Lending
Originate Approve Service Analyze
Dept.
Approve Product Analyze Profitability
Finance
Credit Approval
Credit
79
The Reality Of Modern Business
• Heterogeneous Environments
• Mergers & Acquisitions E-Business PeopleSoft
Suite
• Multi Channel Businesses
• Data Dispersion
• Hard coding Suppliers
Business
• Lack of Standards Intelligence
80
Almost There
81
SOA Defined
82
Service Oriented Architecture – An
Architectural Style
SOA
Create building blocks of
functionality (services) –
new or existing
functionality
83
SOA Benefits
84
Oracle ESB: Component Architecture
• Components
– Integrated Designer
Composite Applications, Portals, BI and BAM
– Rich Monitoring Console
– JCA Adapters
– Routing Service
fx • XPATH Filter Expressions
ESB • XSL Transformation
Console Portlets Web UI BPEL BAM
– Metadata Repository/Server
85
Some of the Adapters Available for Oracle SOA Suite…
Applications Databases Technology
Ÿ Oracle Applications Ÿ SOAP
Ÿ Oracle 8i and above
Ÿ SAP R/3, mySAP Ÿ HTTP, HTTP-S
Ÿ IBM DB/2
Ÿ Peoplesoft Ÿ Email – POP3, SMTP, IMAP
Ÿ Informix
Ÿ JD Edwards Ÿ FTP, FTP-S
Ÿ Clarion
Ÿ Siebel Ÿ Flat Files
Ÿ Clipper
Ÿ Clarify Ÿ JMS
Ÿ Cloudscape
Ÿ Lotus Notes Ÿ Oracle AQ
Ÿ DBASE
Ÿ Ariba Ÿ IBM MQSeries
Ÿ Dialog
Ÿ AXIOM mx/open Ÿ TIBCO Rendezvous
Ÿ Essbase
Ÿ Baan Ÿ Socket
Ÿ FOCUS Data Access
Ÿ BroadVision
Ÿ Clarify
Ÿ Microsoft SQL Server
Legacy
Ÿ MUMPS (Digital Standard MUMPS)
Ÿ CICS
Ÿ i2 Technologies Ÿ Nucleus
Ÿ IMS/DB
Ÿ Lawson Ÿ Paradox
Ÿ IMS/TM
Ÿ Livelink Ÿ Pointbase
Ÿ VSAM
Ÿ Manugistics Ÿ PROGRESS
Ÿ ADABAS
Ÿ Microsoft CRM Ÿ RMS
Ÿ Natural
Ÿ Vantive Ÿ SAS Transport Format
Ÿ Tuxedo
Ÿ Walker Interactive Ÿ Sybase
Ÿ Screen Scraping
Ÿ Remedy Ÿ Teradata
Ÿ CA-IDMS
Ÿ Salesforce.com Ÿ Unisys DMS 1100/2200
Ÿ C-ISAM,D-ISAM,K-SAM, QSAM
Ÿ UniVerse
86
The Oracle BPEL Process Manager
Enterprise-strength infrastructure for BPM
Process
• Comprehensive and native
BPEL Designer
Modeler BPEL
BPEL implementation
Database
• Support for Oracle AS,
Core BPEL Engine
Process
JBoss,
Apps
Console WebLogic and WebSphere
MANAGE
87
Including humans in the process
Human Workflow
• Task routing & assignment
• Integration with LDAP
• Sub tasks
• Notification
88
Applying business rules
Business Rules
• Abstract from
process
• If/then
• Decision tables
• Conflict/gap analysis
• Modify at runtime
• Commit/rollback
• Activation/effective dates
89
90
Slide 90
BUSINESS INTELLIGENCE
91
Management Excellence:
The Next Competitive Edge
Smart – Deep Insight
Agile – Decisive Action
Competitive
Advantage Aligned – Across the
extended enterprise
MANAGEMENT EXCELLENCE
OPERATIONAL EXCELLENCE
Time
92
Business Intelligence – Market Definition
“Business Intelligence is
the process of transforming data into
information
and through discovery transforming that
information into knowledge”
Gartner Group, circa 1993
93
Most Integrated.
Oracle Business Intelligence 11g
Data Scorecards Interactive Reporting & Ad-hoc Office Search Detect Collaborate Mobile Embedded
Integration Dashboards Publishing Analysis Integration & Alert
OLTP & ODS Data Warehouse Exadata OLAP Packaged Unstructured Excel Business
Systems Data Mart Sources Applications & Semi- XML/Office Process
(Oracle, SAP, Others) Structured
• Animated transitions
• Legend-based interactions
• Master-Detail linking
99
UNIFIED INTERFACE
100
A Typical Portal Site
Global Chrome – Template – Navigation – Search – Corp. Identity
Useful
RSS Content Integration / Links
Publishing
Content Portlets
Int. / Third
Portlets
Publ. Party
Business Intelligence
101
Enterprise Challenges
Information Explosion
• Meteoric growth – 35% CAGR with 80% of
content unmanaged
• 30% of information workers time spent
searching
Website Proliferation
• Dramatic increase in intranet Web sites,
applications, and destinations
• User frustration with poor interfaces and
system complexity
Application Silos
• Most processes / projects span more than
one application
• Difficult to execute tasks across multiple
systems
Disconnected Stakeholders
• Most projects require contributions &
coordination of multiple stakeholders
across geographies
102
Oracle WebCenter Suite
Portals and User Interaction Solution
IT Agility
User-Driven
Personalization
Pre-packaged
Enterprise
Integration:
Apps,
Content,
Standards-based Processes
Enterprise Ready Web 2.0
SharePoint Integration
104
ECM Directly from E-Business Suite
Easy Access to Imaged Documents and Tasks
105
ECM Directly from E-Business Suite
Easy Access to Attached HR Documents
• Managed Attachments is
launched from App UI to:
• View/Edit Attachments
• Check-in, Scan, etc.
106
REFERENCES
107
References
Indústria Aeronáutica
de Portugal
108
Oracle s Recommendation: Fusion Platform
• Pre-Integrated
• Comprehensive
• Optimized
• Certified
• Cost Optimized
• Standard
110
Questions
111111