April 27, 2012 Environment: Oracle database 11.2.0.3.0, Oracle Linux 6.2 Sending e-mails from within the Oracle database using the UTL_MAIL PL/SQL package used to be quite easy in Oracle 10g. However, in Oracle 11gR2, things have changed. April 24, 2012 Environment: APEX 4.1.1, Oracle database 11.2.0.3.0, Oracle Linux 6.2 In Oracle database 11g, access to external network resources has been more restricted than in previous versions.

Access to network resources is now controlled through ACL’s (Access Control Lists). This can lead to various problems when you migrate APEX applications from a server running Oracle 10g to one running 11g. Real Estate Finance Ebook Free here. For example, if you wrote your own LDAP authentication functions using the built-in DBMS_LDAP package, you will receive the following error message when you try to authenticate to LDAP: ORA-24247: network access denied by access control list (ACL) This is because the owner of the authentication function lacks access to the required network resources. Grmcprxfreo En Dvd Iso Burning. You can easily test this with the following piece of PL/SQL code: declare l_session dbms_ldap.session; begin l_session:= dbms_ldap.init('windowsdc.mydomain.com',389); end; In this case, “windowsdc.mydomain.com” is a Windows LDAP server running Microsoft’s Active Directory.

To grant access to a specific network resource in 11g, you first need to create a ACL (Access Control List). I executed this with SYS as SYSDBA: BEGIN DBMS_NETWORK_ACL_ADMIN.CREATE_ACL ( acl =>'ldap_access.xml', description =>'Permissions to access LDAP servers.' , principal =>'MATTHIASH', is_grant =>TRUE, privilege =>'connect'); COMMIT; END; In this example, “ldap_access.xml” is the name of my ACL, and “MATTHIASH” is the name of the user account which needs access to the LDAP server. This account owns my custom LDAP authentication function. Next, you need to add the LDAP server to the ACL we just created (don’t forget to COMMIT): BEGIN DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL ( acl =>'ldap_access.xml', host =>'windowsdc.mydomain.com', lower_port =>389, upper_port =>389 ); COMMIT; END; You can check the ACL using the following queries: SELECT * FROM DBA_NETWORK_ACLS; SELECT * FROM DBA_NETWORK_ACL_PRIVILEGES; That’s it! You can now test the DBMS_LDAP.INIT example again and it should work!

You can add more users to the ACL as follows: begin DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE('/sys/acls/ldap_access.xml', 'NEWUSER', TRUE, 'connect'); COMMIT; end; Removing users from a ACL can be done using the package DBMS_NETWORK_ACL_ADMIN.DELETE_PRIVILEGE: begin DBMS_NETWORK_ACL_ADMIN.DELETE_PRIVILEGE('/sys/acls/ldap_access.xml', 'NEWUSER', TRUE, 'connect'); COMMIT; end; Matthias.

Installing PLSQL packages for DBMS_NETWORK_ACL_ADMIN. You can check whether they exist first, run this as user sys: select * from dba_objects where name =. If they don't exist on Oracle RDBMS (I don't know whether maybe express edition excludes them, but that seems illogical), your database is.