APEX

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

DB Security - network access denied by ACL, how to access DB server as SYS user?

Christian.C.VAug 6 2018 — edited Aug 7 2018

Hi all,

I am attempting to connect to a server over TCP from APEX using code similar to the following:

DECLARE

c utl_tcp.connection; -- TCP/IP connection to the Web server

ret_val pls_integer;

BEGIN

c := utl_tcp.open_connection(remote_host => 'www.google.com',

remote_port => 80,

charset => 'US7ASCII'); -- open connection

ret_val := utl_tcp.write_line(c, 'GET / HTTP/1.0'); -- send HTTP request

ret_val := utl_tcp.write_line(c);

BEGIN

LOOP

dbms_output.put_line(utl_tcp.get_line(c, TRUE)); -- read result

END LOOP;

EXCEPTION

WHEN utl_tcp.end_of_input THEN

NULL; -- end of input

END;

utl_tcp.close_connection(c);

END;

And am getting the following error:

ORA-24247: network access denied by access control list (ACL)

I believe I need to create an ACL using code similar to the following:

BEGIN

DBMS_NETWORK_ACL_ADMIN.create_acl (

acl => 'local_sx_acl_file.xml',

description => 'A test of the ACL functionality',

principal => 'WC',

is_grant => TRUE,

privilege => 'connect',

start_date => SYSTIMESTAMP,

end_date => NULL);

end;

begin

DBMS_NETWORK_ACL_ADMIN.assign_acl (

acl => 'local_sx_acl_file.xml',

host => 'localhost',

lower_port => 9002,

upper_port => NULL);

end;

However the issue is it needs to be run on the DB server as the SYS user - I am having trouble running it from APEX. Is this something I can do or do I need to request Oracle's assistance?

Thanks in advance!

Locked Post

New comments cannot be posted to this locked post.

Locked on Sep 4 2018

Added on Aug 6 2018

#apex-discussions, #database, #error, #security

5 comments

708 views