Databases

Oracle Database 21c Standard on Windows User Guide

| Product: Oracle Database 21c Standard on Windows

Overview

This guide covers the deployment and configuration of Oracle Database 21c Standard Edition on Windows Server using cloudimg AMIs from the AWS Marketplace. Oracle Database 21c Standard Edition on Windows Server provides core relational database functionality with the latest innovations including blockchain tables and native JSON datatype.

What's included in this AMI:

  • Oracle Database 21c Standard Edition 21.3.0.0.0 installed on Windows Server
  • Preconfigured ORCL database instance that starts automatically on boot
  • Oracle Listener preconfigured on port 1521
  • Oracle administration utilities available on the Desktop
  • SQL*Plus shortcut on the Desktop for command line database access
  • Randomly generated SYSTEM database user credentials on the Desktop
  • 24/7 cloudimg support with guaranteed 24 hour response SLA

Prerequisites

Before launching this AMI, ensure you have:

  1. An active AWS account
  2. An active subscription to the Oracle Database 21c Standard on Windows listing on AWS Marketplace
  3. An EC2 key pair for decrypting the Windows Administrator password
  4. A Remote Desktop (RDP) client application
  5. Familiarity with EC2 instance management

Recommended Instance Type: m5.large (2 vCPU, 8 GB RAM) or larger. The minimum requirements are 1 vCPU, 1 GB RAM, and 30 GB disk space, but Oracle Database on Windows benefits significantly from additional memory for production workloads.

Step 1: Launch the AMI

  1. Navigate to the AWS Marketplace and search for "Oracle Database 21c Standard Windows cloudimg"
  2. Click Continue to Subscribe, accept the terms, then Continue to Configuration
  3. Select your preferred Region and Software Version
  4. Click Continue to Launch
  5. Choose Launch through EC2 for full control over instance configuration
  6. Select your instance type (m5.large recommended)
  7. Configure storage: 30 GB gp3 minimum
  8. Configure your Security Group with the following inbound rules:
Port Protocol Source Purpose
3389 TCP Your IP Remote Desktop (RDP) access
1521 TCP Your IP Oracle Database Listener port

Important: Restrict both ports to your IP or trusted networks only. Do not open RDP or the Oracle Listener port to the public internet.

  1. Select your EC2 key pair and launch the instance

Step 2: Retrieve the Administrator Password

  1. Wait for the instance to reach 2/2 status checks and the Running state
  2. In the EC2 Console, select your instance
  3. Click Actions > Security > Get Windows password
  4. Click Browse and upload the key pair (.pem file) you selected during launch
  5. Click Decrypt password
  6. Copy the decrypted Administrator password

Important: It may take up to 15 minutes after launch for the Windows password to become available. If you see a message indicating the password is not yet available, wait and try again.

Step 3: Connect via Remote Desktop (RDP)

  1. Open your Remote Desktop client application
  2. Enter the public IP address of your EC2 instance as the PC name
  3. Click Add or Connect
  4. When prompted for credentials, enter:
  5. Username: Administrator
  6. Password: The decrypted password from the previous step
  7. Accept the certificate warning if prompted and click Continue

You should now see the Windows Server desktop with Oracle Database utilities available.

Step 4: Access SQL*Plus

The SQLPlus utility is available as a shortcut on the Desktop. Double click the SQL Plus* icon to open it.

When prompted, log in using the SYSTEM credentials:

  • Username: SYSTEM
  • Password: Refer to the oracle-credentials file on the Desktop

You can also open a Command Prompt and run:

sqlplus / as sysdba

Step 5: Connect Remotely with SQL Developer

To connect to the database from an external tool such as SQL Developer on your local machine, use the following connection settings:

Setting Value
Database Type Oracle
Authentication Type Default
Username SYSTEM
Password From oracle-credentials file on Desktop
Connection Type Basic
Hostname Your instance public IP
Port 1521
Service Name orcl.us.oracle.com

Server Components

Component Version
Oracle Database 21c Standard 21.3.0.0.0
Windows Server See AMI description

Filesystem Layout

Drive Description
C: System drive with Windows Server and Oracle Database installation

Managing the Oracle Database Service

The Oracle Database service and ORCL instance are configured to start automatically on boot. You can manage the service using Windows Services or the command line.

Check service status using Windows Services:

  1. Press Win + R, type services.msc, and press Enter
  2. Look for the Oracle Database service (OracleServiceORCL)
  3. The status should show Running

Stop the database service:

net stop OracleServiceORCL

Start the database service:

net start OracleServiceORCL

Stop the Oracle Listener:

lsnrctl stop

Start the Oracle Listener:

lsnrctl start

Scripts and Log Files

File Location Description
oracle-credentials Desktop Oracle Database SYSTEM user credentials

Troubleshooting

Cannot connect via RDP

  1. Verify the instance has reached 2/2 status checks in the EC2 console
  2. Confirm your security group allows inbound TCP port 3389 from your IP
  3. Ensure you are using the correct Administrator password (re-decrypt if needed)
  4. Wait at least 15 minutes after launch for the password to become available

Oracle Database service is not running

  1. Open Windows Services (services.msc) and check the OracleServiceORCL status
  2. Try starting the service: net start OracleServiceORCL
  3. Check the Windows Event Viewer for Oracle related errors
  4. Verify sufficient disk space is available on the C: drive

Cannot connect remotely on port 1521

  1. Verify the Oracle Listener is running: lsnrctl status
  2. Confirm your security group allows inbound TCP port 1521 from your IP
  3. Check Windows Firewall allows port 1521
  4. Test connectivity: telnet <instance-ip> 1521

SQL*Plus connection fails

  1. Verify the OracleServiceORCL service is running
  2. Check the oracle-credentials file on the Desktop for the correct password
  3. Try connecting as sysdba: sqlplus / as sysdba

Security Recommendations

  • Restrict port access: Only allow RDP (3389) and Oracle Listener (1521) from trusted IP addresses
  • Change the Administrator password: Update the default Windows password after first login
  • Change default database passwords: Update the SYSTEM and SYS user passwords immediately
  • Use strong passwords: Ensure all passwords meet complexity requirements
  • Enable Windows Firewall rules: Verify only necessary ports are open
  • Enable Oracle auditing: Configure Oracle Database auditing to track access and changes
  • Encrypt connections: Configure Oracle Net Services to use SSL/TLS encryption
  • Keep the system updated: Apply Windows Updates and Oracle Critical Patch Updates regularly
  • Disable unused Oracle services: Stop and disable any Oracle services not required

Support

If you encounter any issues with this product, contact cloudimg support:

  • Email: support@cloudimg.co.uk
  • Website: www.cloudimg.co.uk
  • Support hours: 24/7 with guaranteed 24 hour response SLA