© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.

DAT325

Managed Oracle Databases with

Amazon RDS: New features &
best practices
Michael Barras (he/him) Manish Mohite
Principal Database SA Head of Cloud Engineering
Amazon Web Services Jefferies

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Agenda

Amazon RDS for Oracle new features

Amazon RDS Custom for Oracle new features

Choosing the right solution for Oracle Database workloads

Customer content: Jefferies’ experience with Amazon RDS Custom for Oracle

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
PARTICIPATE IN SESSION POLLS ON YOUR MOBILE DEVICE

POLL: How many times have you attended

re:Invent previously?
• 0: First-timer
• 1–2: Happy to be back
• 3–5: Frequent guest
• 5+: Expert re:Invent attendee

prod-livepolling.awseventservices.com 995168
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS
Managed relational database service with a choice of popular databases

MySQL PostgreSQL MariaDB Microsoft SQL Server Oracle

Designed to
Performant and Available and enable security
Easy to administer
scalable durable and compliance

• No infrastructure • Scale with an API call or • Automatic Multi-AZ • Encryption at rest and
provisioning a few clicks data replication in transit
• No software installation • Read replicas for • Network isolation and
and patching • Automated backup, resource-level
increased throughput
snapshots, and failover permissions
• Built-in monitoring

39% lower database operation costs

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS for Oracle
Customer Virtual Private Cloud (VPC) Amazon Relational Database Service

RDS for Oracle database instance

Amazon RDS for Oracle

Multi-AZ secondary
Customer Amazon RDS for Oracle Oracle Database Database storage Operating -
applications and instance/endpoint in software system files and Synchronous storage
resources customer account configs replication with a 99.95%
- uptime Service Level
Elastic Network Agreement (SLA)
Interface (ENI) in
customer account
-
Access via managed
Oracle Database Amazon Elastic Compute
Listener on specified Cloud (Amazon EC2) Amazon RDS for
port Oracle replica
instance
Amazon Elastic Block Store Amazon Simple Storage Service -
(Amazon EBS) (Amazon S3) Asynchronous
Oracle Data Guard
physical standby
Amazon Elastic File System
(Amazon EFS)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS Custom for Oracle
Customer Virtual Private Cloud (VPC) Amazon Relational
Database Service
RDS Custom for Oracle database instance
Amazon RDS Custom for Oracle
instance/endpoint
-
Access via Oracle Database
Listener on specified port
- Oracle Database Database storage Operating
software system files and Amazon RDS Custom
Access host via Secure Shell
configs for Oracle
(SSH)
-
Database automation
Customer
applications and
with support for
resources customization of the
Amazon RDS Custom for underlying operating
Oracle replica instance Amazon EC2 system and database
- environment
Managed Oracle Data Amazon EBS Amazon S3
Guard physical standby Support perimeter

Customer-managed
replica instances Amazon EFS

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
POLL: Which best describes your current experience
running Oracle Database workloads on AWS?
• New to AWS and just getting started
• Self-managing lift-and-shift workloads on
Amazon EC2
• Running most workloads on Amazon RDS
for Oracle
• Modernizing workloads to Amazon Aurora,
Amazon RDS open source, or other
purpose-built databases

prod-livepolling.awseventservices.com 103867
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS for Oracle
new features

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle database versions

Major Versions 19c

21c
Run the latest versions of Oracle Database

Version deprecations March 31, 2022 12.2.0.1 deprecated

• Based on Oracle Support end dates July 31, 2022 12.1.0.2 deprecated
(MOS note 742060.1) April 30, 2024 19c end of Premier Support
• Bring-your-own-license (BYOL) customers 21c deprecated (end of support)
require support, including Extended Support April 30, 2025 19c end of fee-waived ES
(ES) where appropriate April 30, 2027 19c deprecated (end of ES)

Minor versions Oracle Release Update (January, April, July, October)

Stay up to date with quarterly security and bug fixes DST and additional patches (see Release Notes)
from Oracle New RDSADMIN features and bug fixes
Required for customers using Oracle JVM

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle option versions

Oracle Enterprise Manager Cloud 12.1.0.4, 12.1.0.5

13.1, 13.2, 13.3, 13.4, 13.5
Control Agent
See documentation for additional details and
• RDS-managed agent connects to customer- requirements
managed Oracle Management Server (OMS)
• Agent only has database access

Oracle Application Express (APEX) 19.1, 19.2

20.1, 20.2
21.1, 21.2, 22.1
• Low-code application development
• Application components customer-managed Oracle Database 21c supports APEX 21.1 and later
on EC2
• Upgrades automated by RDS

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle database instance types

Managed infrastructure Customer choice

• Selection of recent-generation • Balance vCPU, memory, and storage
instance types ideal for database bandwidth requirements
workloads
Amazon RDS • Right-size based on workload
• Operating system configured for
Oracle workloads and kept up to • Change whenever you want with a
date quick failover with Multi-AZ

• Storage, networking, new instance • Save money with Reserved Instances

capabilities tested and managed by Amazon EC2
RDS

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle database instance types
Burstable T3 Latest burstable family
Cost-effective instances for dev/test, burstable
workloads
General purpose M5, M6i Latest general purpose family
Production workloads with balanced CPU and M5d Adds local storage for TEMP and flash cache
memory (4 GiB : 1 vCPU)

High memory R5, R6i Latest memory-optimized family

• More memory (8:1, up to 32:1) and I/O R5b Adds 2-3x storage bandwidth (up to 2 GiB/s)
bandwidth per vCPU for data-intensive R5d Adds local storage for TEMP and flash cache
workloads X2idn High RAM (up to 2 TiB) and storage bandwidth
• Choose memory-optimized instance types X2iedn Higher RAM (up to 4 TiB) and storage bandwidth
(BYOL) to choose the vCPU:memory (up to X2iezn High-frequency CPU
64:1) configuration that suits your workload

b = block storage optimization; d = instance store volumes; e =extra memory; i = Intel processors; n = network optimization; z = high frequency processors

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle network and configuration

TCP/IP networking IPv4

IPv6 (dual stack)

Software-defined networking and secure
Requires VPC and all subnets in associated subnet
connectivity to on-premises with Amazon group have IPv4+IPv6 CIDR
Virtual Private Cloud (VPC)

Oracle SQL*Net configuration Use “ALLOW_WEAK_CRYPTO” option settings to

block (FALSE) or allow (TRUE; Oracle’s default) use of
outdated cryptographic algorithms on the client or
Listener and network configuration fully server with Native Network Encryption (NNE)
managed
Set “remote_listener” database parameter to proxy
Set SQL*Net parameters, enable SSL/TLS or connections using customer-managed Oracle
Native Network Encryption (NNE) Connection Manager (CMAN)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data migration with RDS for Oracle
Source database Data movement RDS for Oracle database instance

Logical export Oracle database links Logical import

SQL, Log mining Network connectivity SQL
Oracle GoldenGate, AWS Database Migration
direct or via logical replication
Service (DMS)

Oracle Data Pump Oracle Data Pump

expdp, dbms_datapump, exp impdp, dbms_datapump, imp

Amazon Elastic File System

(Amazon EFS)

Amazon Simple Storage

Dump files Service (Amazon S3) Dump files

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data migration with RDS for Oracle

New - Amazon Elastic File System (EFS) support

• Attach an EFS volume in your • Petabyte-scale NFS storage

account to multiple EC2 and
RDS Oracle instances • Designed for four 9s (99.99%)
availability and eleven 9s
• Load data into/out of database durability
without allocating extra RDS
instance storage Amazon Elastic File System
(Amazon EFS)

• Easily share data between

database and application
servers

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS for Oracle replicas

Up to 5 total replicas,
in the same Region or
different Regions
Read/write Read-only
workloads workloads

Fully-managed Data
Guard/Active Data
Guard physical
standby in maximum
performance mode
Replication traffic
Oracle Data Guard always encrypted
Amazon RDS (logwriter asynchronous)
for Oracle
primary

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle replica promotion
Region 1 Region 2

Read/write Read-only
workloads workloads

Oracle Data Guard Amazon RDS

(MaxPerformance, asynchronous) for Oracle
Amazon RDS
replica
for Oracle
primary

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle replica promotion
Region 1 Region 2

Can be same or
different region as
Read/write Read-only source instance Read/write
workloads workloads workloads

2. Standby
1. Replication becomes
terminated standalone
Amazon RDS
Amazon RDS instance
for Oracle
for Oracle
Oracle Data Guard primary
replica
(MaxPerformance, asynchronous)
Amazon RDS
for Oracle
primary
3. Full backup

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New - RDS for Oracle automated backups
Region 1 Region 2

Application

region1-instance1 region1-instance2 region2-instance3

(primary) (replica) (replica)

RDS RDS
automated automated
backups backups

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New - RDS for Oracle replica switchover
Region 1 Region 2

1. Application sessions Can be same or 2. Standby becomes

terminated, primary different region as primary, resumes
converted to standby source instance replication to existing
replicas

region1-instance1 region1-instance2 region2-instance3

(primary) (replica) (replica)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle replica switchover
Region 1 Region 2

Application

region1-instance1 region1-instance2 region2-instance3

(replica) (replica) (primary)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle replica switchover (back)
Region 1 Region 2

Application

region1-instance1 region1-instance2 region2-instance3

(primary) (replica) (replica)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS for Oracle role transition use cases

Promotion Switchover

• Seed dev/test environments • Disaster recovery readiness drills

• Seed logical replication • Shift write traffic regionally (follow

the sun)
• Create new primary instance while
preserving old primary • Migrate to a new region while
maintaining replicas
• Disaster recovery

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS Custom for
Oracle new features

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle shared
responsibility model
On-premises EC2 RDS Custom RDS

App optimization App optimization App optimization App optimization

Scaling Scaling Scaling Scaling You

manage
High availability High availability High availability High availability
Shared
Backups Backups Backups Backups responsibility

DB patching DB patching DB patching DB patching AWS

manages
OS patching OS patching OS patching OS patching

OS installation OS installation OS installation OS installation

Hardware Hardware Hardware Hardware

Self-managed AWS-managed

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle database versions

Major Versions 12.1.0.2, 12.2.0.1, 18c, 19c

Run the latest versions of Oracle Database

Version deprecations Customers choose when to deprecate versions that

are no longer supported by Oracle

Minor versions Customers control patch composition

Stay up to date with quarterly security and bug fixes RDS automation handles upgrade to new CEV
from Oracle
Use custom engine version (CEV) with bring your
own media to build an Oracle Home with the
patches, owners, and path names of your choice

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New - RDS Custom for Oracle Multitenant

RDS Custom for Oracle database instance New database engine

“custom-oracle-ee-cdb”
Container always for custom engine
named RDSCDB version (CEV) and
instances
First pluggable
database created by RDSCDB
RDS

--db-name
(default ORCL)
Additional pluggable
ORCL PDB2 PDB… databases created
RDS monitors and and managed by the
provides metrics on customer
pluggable databases,
ensures they remain RDS Custom for Oracle automation
open

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle replicas

Up to 5 managed replicas,
in the same Region
Additional customer- Read/write Read-only
managed replicas workloads workloads
supported

Fully-managed Data
Guard/Active Data
Guard physical
standby in maximum
performance mode
(configurable)
Oracle Data Guard
Amazon RDS
Custom for Oracle
primary

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
New - RDS Custom for Oracle promote
managed replicas
Region 1

Read/write Read-only
workloads workloads

Oracle Data Guard Amazon RDS

Amazon RDS Custom for Oracle
Custom for Oracle managed replica
primary

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle promote managed
replicas
Region 1

Read/write Read-only Read/write

workloads workloads workloads

1. Replication 2. Standby
terminated becomes
standalone
Amazon
Amazon RDS
RDS instance
Custom
Custom for
for Oracle
Oracle
Oracle Data Guard primary
managed replica
Amazon RDS
Custom for Oracle
primary
3. Backup

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle switchover/failover
Region 1

Read/write Read-only
workloads workloads
Customer-managed
switchover/failover using
Data Guard Broker
(manual or fast-start
failover)

Oracle Data Guard Amazon RDS

Amazon RDS Custom for Oracle
Custom for Oracle managed replica
primary

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
RDS Custom for Oracle switchover/failover
Region 1

Read-only Read/write
workloads workloads
Customer-managed
switchover/failover using
Data Guard Broker
(manual or fast-start
failover)

Oracle Data Guard Amazon RDS

Amazon RDS Custom for Oracle
RDS Custom will detect primary
Custom for Oracle
managed replica
and update instance
roles
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Choosing the right solution for
Oracle Database workloads

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Use case: Amazon RDS for Oracle

Application/requirements Service experience

• Physical infrastructure managed by AWS
• Custom and third-party applications that
use standard database features • Fully managed database infrastructure

Oracle Peoplesoft, Siebel CRM, JD Edwards ▪ High availability and disaster recovery
▪ Host monitoring and replacement

• Run major versions of Oracle Database ▪ Patching and feature management

actively supported by Oracle • DBA-level access to the database via listener
endpoint
Minor version patch composition managed (no SYS, SYSTEM, or host access)
by RDS

• Database storage up to 64 TiB

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Use case: Amazon RDS Custom for Oracle

Application/requirements Service experience

• Physical infrastructure managed by AWS
• Custom and third-party applications that
require host access and/or elevated • Managed database infrastructure
database privileges
▪ Host monitoring and replacement
Oracle E-Business Suite ▪ Patching

• Run recent Oracle Database versions • Ability to customize and self-manage

(back to 12.1.0.2) infrastructure
• Host (SSH) and SYS/SYSTEM access
Choose your patches with custom engine Install agents/software on host
versions (CEV)

• Database storage up to 64 TiB

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Use case: Self-managed on Amazon EC2

Application/requirements Service experience

• Physical infrastructure managed by AWS
• Custom, legacy, complex applications that
require full control and customization • Database infrastructure and operations fully
customer-managed

• Choice of database versions

• Choice of instance and volume types

• Database storage up to hundreds of

terabytes

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
POLL: What are the top challenges that block you from
migrating workloads to Amazon RDS for Oracle?

• Size/performance requirements
• Database features and permissions
• TCO/value proposition
• Don’t know enough about the
service

prod-livepolling.awseventservices.com 844401
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon RDS Custom for Oracle
at Jefferies

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Agenda

Who is Jefferies

Why did Jefferies leverage RDS Custom for Oracle

Jefferies Reference Architecture on RDS Custom for Oracle

How Jefferies solved challenges

Conclusion and Takeaway

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Jefferies
Jefferies is the largest independent full-service global investment banking firm
headquartered in the U.S. and provides investment banking, advisory, sales and
trading, research and wealth management services across the Americas, Europe
and Asia

▪ Celebrating 60 years of putting our clients

first, always.
▪ Offices in over 30 cities around the world
▪ 4,508 Jefferies Group employee-partners
▪ Wholly owned subsidiary of Jefferies
Financial Group Inc (NYSE: JEF)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Why Amazon RDS Custom for Oracle
PACKAGED APPLICATION DEPENDENT ON ORACLE RDBMS

Key features from the Service

• License portability and enterprise support

• AWS managed provisioning

• Automated backups

• Automated monitoring and alerting

• Cloud scale

• Integration opportunities with standard

security tooling

• Root level customer transparency

• Service Roadmap driven by the customers

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Jefferies RDS Reference Architecture
AWS Cloud

VPC
IBM Guardium AZ-1 AZ-2
AWS Key Management Service
(AWS KMS)
Data Guard Standby

Oracle
Enterprise
Amazon RDS Amazon RDS
Manager
Standby
AWS Secrets Manager

Oracle
Unified EC2
Directory EC2
Amazon CloudWatch

Splunk

AWS Systems Manager

S3

Crowdstrike EFS

AWS Service
Atlassian Catalog
Zabbix DevOps Ansible
Toolset
Amazon Route 53

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Automation Challenge
SYSTEMS MANAGER – AUTOMATION DOCUMENTS AT THE CENTER OF AUTOMATION

Capabilities via automation

Create RDS Create Read ▪ Centralized CEV Management

Create CEV
instance replica DB
▪ Tagging standards
▪ Centralized Encryptions KMS-CMK
Customize Promote Pause ▪ Ansible playbooks
Read replica Replica Automation
▪ AD Integrations
▪ Software packaging
Clone DB Promote
Full Backup ▪ Prepare and personalize Oracle RDS
across region Replica
▪ Secure Certs for TLS
▪ Setup Monitoring for operations and security
Terminate
Service call ▪ On-demand features like local replica, remote
DB
replica, failover, terminate DB

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Workflow – create RDS Custom for Oracle instance

Obtain engine version Create RDS custom Wait State Get Database ID
and approval

• Installation Media • Create RDS custom • Instance and • API call –

files, patches, release with all enterprise database identifier DescribeDBinstances
updates centrally standards around needed for
managed via S3. tagging, KMS-CMK customization.
etc…

Install and configure Prepare and Prepare and execute Get Instance ID
Observer personalize Oracle RDS instance for
Ansible

• Detect and observe • Install and configure • Playbook centrally • API Call -
resources packaging around managed via S3 DescribeDBInstances
Guardium, OUD etc..

Define and Place Certs Install and configure

TLS
•Centralized certs on
S3 •Secure transport Little bit of work to
layer based on
corporate standards maximize value!

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Conclusion
▪ RDS Custom for Oracle provided a significant value proposition with
legacy, custom, and packaged application where Jefferies don’t want
to fully manage Oracle databases.

▪ Leverage the automation mode and support perimeter capabilities to

leverage RDS managed services.

Stop spending money and time on

undifferentiated heavy lifting!

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Learn more
• AWS documentation – Getting started with Amazon RDS – step-by-step instructions
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_GettingStarted.html
• AWS Partner, House of Brick – Understanding your options for deploying and licensing
Oracle on AWS
https://aws.amazon.com/blogs/apn/understanding-your-options-for-deploying-and-licensing-
oracle-on-aws/
• AWS Database Blog – Role of the DBA when moving to Amazon RDS
https://aws.amazon.com/blogs/database/part-1-role-of-the-dba-when-moving-to-amazon-rds-
responsibilities/
• AWS Database Blog – Category: Amazon RDS for Oracle
https://aws.amazon.com/blogs/database/category/database/amazon-rds/rds-for-oracle/
• Amazon RDS for Oracle additional resources
https://aws.amazon.com/rds/oracle/resources/

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Thank you!
Michael Barras (he/him) Manish Mohite
[email protected]

Please complete the session

survey in the mobile app

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.