Data Loss Prevention

 View Only
Back to Library

Data Loss Prevention DLP and Oracle RAC 11 or 12c 

Oct 15, 2015 12:40 PM

Hello DLP Users,

I wanted to share some information on how to get DLP to be installed with Oracle RAC.

Either with version Oracle 11g RAC or Oracle 12c RAC.

**** First of all Oracle RAC is NOT supported by Symantec and has NOT been certified or tested at all. So please make sure that you have a strong DBA with Oracle knowledge if you move forward with this at your own risk. ****

Keep in mind that if you have Oracle RAC, I assume you have a team of DBA's to help with the installation and configuration.

Also keep in mind that some of these steps will require you to circumvent the installation process in order for it to install correctly.

There are a couple different approaches that I have done when installing on Oracle RAC, and will outline them as to how this was done.

Oracle 11g RAC - Tried this DLP V11.x

  1. Install Oracle as outlined in the installation manual, make adjustments as necessary for Oracle RAC if needed. (Use the DBT File and user creation scripts)
  2. Connect to the DB and Run Sqlplus command “select * v$version;” and record the output for the instance name.
  3. Open Task Manager
  4. Start the installation program normally (Run as Admin)
  5. When it asks for the DB SID in the installer
  6. Point the Installer to the “select * v$version;” output for the instance name.
  7. It should then try to connect to the DB and it will take longer than it would if it failed.
  8. Open up the Task Manager and Kill the sqlplus process that the installer runs. - You may need to do try this more than once.
  9. Do NOT start the Vontu Services and change the jdbc.properties file (SymantecDLP\Protect\config. Comment out the connection line and update it with the Service Name style of string. Make sure to change the Host and Connect Data portion.
  10. jdbc.dbalias.oracle-thin=@(description=(address=(host=FQDN_DB_SERVER_NAME)(protocol=tcp)(port=1521))(connect_data=service_name=DB_SERVICE_NAME)))
  11. Then reboot the server and it should come up and connect to the DB.

***** THIS WILL NOT WORK IN A MULTI-TENANCY ORACLE 12C SYSTEM (I tried this and it will just not work during the installation process) ********

Oracle 12c RAC - Tried this with DLP v14 (NOT VERIFIED)

This process requires you to copy a file and edit the contents, and then replace the file before the installer starts. This may even work for Oracle 11g

Install Oracle as outlined in the installation manual, make adjustments as necessary for Oracle RAC if needed. (Use the DBT File and user creation scripts)

  1. Start the installation program normally (Run as Admin)
  2. Go to the Users Directory that is running the Installer - C:\Users\[username]\AppData\Local\Temp
  3. Look for the most recent directory created or modified - This is the Temp installation directory created when you run the installer.
  4. Inside that directory look for the following file name "i4jparams.conf" (Note the Directory Name for later)
  5. Copy that file to your desktop
  6. Cancel the DLP Installation Program
  7. Edit and save the file using notepad and do a search and replace for the following "sid=$" replace with "service_name=$"
  8. Now start the DLP Installer again, and make sure to replace the NEW i4jparams.conf file into the directory where it is being extracted to. You will need to complete this before the first Symantec Splash screen comes up (During the Extracting process)
  9. Follow the installation process as normally, just fill in the SID with the service name that you would use to connect to the DB.
  10. Do NOT start the Vontu Services and change the jdbc.properties file (SymantecDLP\Protect\config. Comment out the connection line and update it with the Service Name style of string. Make sure to change the Host and Connect Data portion.
  11. jdbc.dbalias.oracle-thin=@(description=(address=(host=FQDN_DB_SERVER_NAME)(protocol=tcp)(port=1521))(connect_data=service_name=DB_SERVICE_NAME)))
  12. Then reboot the server and it should come up and connect to the DB.

 

Good Luck!!

Ronak

Statistics
0 Favorited
2 Views
0 Files
0 Shares
0 Downloads

Tags and Keywords

Comments

DLP Solutions
Jun 05, 2017 09:58 PM

All there might be a typo in this article.

The JDBC.properties edit might be wrong try the following also, I think I missed an '('

 

jdbc.dbalias.oracle-thin=@(description=(address=(host=FQDN_DB_SERVER_NAME)(protocol=tcp)(port=1521))(connect_data=(service_name=SERVICENAME)))

DLP Solutions
Apr 18, 2017 12:49 PM

John,

Thanks for your comment.

It is a clunky work around but it gets the job done.

As far as getting this supported by SYMC, I would completely agree.

This needs to be supported and needs to be escalated to the Product Management Group.

So my reccomendation is to go through your Symantec Sales rep or log a case with SYMC.

(This site is not read by the SYMC team as a result the complaining will fall on deaf ears)

Good Luck

Ronak

Migration User
Apr 17, 2017 10:12 PM

Hi

 

This process does not work and I have tried this for v11.5, v12 and v14.x

The fact that this product does not support a service name option particularly in the latest version (v14.6) for Oracle 12c where the concept of a SID no longer exists is not good.

Please can you sort this out ASAP as for consultants who are trying to work with this in the field it doesn't look great when as a work around to get the product installed we have to resort to installing a local temporary instace of Oracle (with a SID and on 11g)! 

Where is the oversight in the SDLC of this product, please sort it out!

Regards

John  

Related Entries and Links

No Related Resource entered.