Oracle Network Products Getting Started for Windows Platforms Go to Product Documentation Library
Library		 Go to books for this product
Product		 Go to Contents for this book
Contents		 Go to Index
Index


Go to previous file in sequence Go to next file in sequence

Supported Oracle Network Products

Oracle Network Products

The table below lists each supported Oracle Network Product, its release number, and the Windows platform on which it can be installed. Each Oracle Network Product is described in detail later in this chapter.

Table 2¯1 Oracle Network Products Availability

Oracle Network Product Release NT Server NT Client 95 Client Windows Client
SQL*Net 2.3.3 yes yes yes yes1
Oracle Protocol Adapters:
TCP/IP Protocol Adapter 2.3.3 yes yes yes yes
SPX Protocol Adapter 2.3.3 yes yes yes yes
DECnet Protocol Adapter 2.3.3 yes yes no yes
Named Pipes Protocol Adapter 2.3.3 yes yes yes yes
NetBIOS Protocol Adapter 2.3.3 no no no yes
LU6.2 Protocol Adapter2 2.3.3 yes yes no yes
Bequeath Protocol Adapter3 2.3.3 yes yes yes4 no
SQL*Net Configuration Tools:
SQL*Net Easy Configuration5 n/a yes yes yes yes
Oracle Network Manager6 3.1.0 yes yes yes yes
Client Status Monitor and SQLNET.ORA Editor 2.3.3 no no no yes
Oracle Names Server 2.0.3 yes no no no
Advanced Networking Option7: 2.3.3
Network Security and Single Sign-On 2.3.3 yes yes yes yes
2.3.3 yes yes yes yes
2.3.3 yes yes yes yes
2.3.3 yes yes yes yes
2.3.3 yes yes yes no
NDS Native Naming Adapter
Shipped with SQL*Net 		2.3.3 no yes yes yes
DCE Integration 2.3.3 yes yes yes yes8
Authentication Adapters:
NDS Authentication Adapter9 2.3.3 no yes yes yes
Windows NT Authentication Adapter 2.3.3 yes10 yes10 yes yes11
  1. SQL*Net for Window is compatible with Windows applications running in enhanced mode only. Attempting to run SQL*Net for Windows in Windows standard mode generates the following error:

    ORA-03121 No interface driver connection - function not performed

  2. Microsoft SNA Server version 3.0 or above is required for LU6.2 on Windows NT.

  3. The local, non-network Bequeath Protocol Adapter is automatically installed with SQL*Net on Windows NT and is available for 16 or 32 bit applications, allowing client applications to communicate with a database server running on the same machine.

  4. Bequeath only works on Windows 95 for connections to a Personal Oracle7 database.

  5. SQL*Net Easy Configuration and the 16-bit Client Status Monitor and SQLNET.ORA Editor are automatically installed with SQL*Net. For information on the Client Status Monitor and SQLNET.ORA Editor, see the Oracle Network Products Troubleshooting Guide.

  6. Oracle Network Manager is not available for installation from the Windows 95 or Windows NT subdirectories of your CD-ROM. To install and run Oracle Network Manager on either Windows 95 or Windows NT, go to the Windows subdirectory of your CD-ROM and run ORAINST or SETUP. Then select Oracle Network Manager for installation.

  7. The Advanced Networking Option is packaged separately from SQL*Net. The NDS Native Naming Adapter, however, is shipped with SQL*Net. ANO is certified against SQL*Net 2.3.2.1.5 or higher for Windows NT/95 and SQL*Net 2.3.2.1.4 or higher for Windows 3.1, and it is not compatible with earlier versions of SQL*Net.

  8. DCE Integration for Windows is available only for version 2.1.4.1.6 of SQL*Net and only compatible with the client version of SQL*Net 2.1.4.1.6. It also does not support the CDS naming adapter.

  9. If using the NDS Authentication Adapter with SQL*Net Version 2.3.3, you must have as much as 535K or below one megabyte DOS memory. If you do not have enough memory and try to access the database with CONNECT /@alias, the following error displays:

    ORA-12634 TNS:Memory allocation failed

  10. Free up more DOS memory by either not loading as many DOS drivers or by running MEMMAKER. Oracle is working with Microsoft to determine why so much memory is required.

  11. If using Windows 3.51, Service Pack 5 must be installed in order for operating system authentication to work.

  12. Windows NT Authentication Adapter is available for Windows for Workgroups 3.11 only, not Windows 3.1.

Oracle Protocol Adapters

The table below lists the supported protocol adapter vendor that is compatible with each Oracle Protocol Adapter.

Table 2¯2 Supported Protocol Adapter Supported Vendors

Oracle Protocol Adapter Windows Platform Supported Vendor
TCP/IP Protocol Adapter Windows 3.1 and Windows for Workgroups 3.11 third-party vendors that support JSB Virtual Socket Library version 3.0.11

Windows NT and Windows 95 Microsoft TCP/IP
SPX Protocol Adapter Windows 3.1 and Windows for Workgroups 3.11 Novell NetWare version 3.11 or later, included in Novell NetWare Workstation Kit for DOS and Windows version 2.0 Novell NetWare Client version 4.1 or higher
Windows NT and Windows 95 Microsoft NW Link

Novell NetWare Client 32

Note: For Microsoft NW Link, Client Service for NetWare must be installed.

DECnet Protocol Adapter

 Windows 3.1 and Windows for Workgroups 3.11 Digital DEC PATHWORKS for DOS/Windows version 5.1 or 6.0. Future versions of the Oracle DECnet Protocol Adapter for Windows will support only version 6.0 and later.

Windows NT Digital DEC PATHWORKS1 version 4.1B supporting NT 3.51
Named Pipes Protocol Adapter Windows 3.1 and Windows for Workgroups 3.11 Microsoft LAN Manager version 2.2 or Windows for Workgroups version 3.11.
Windows NT and Windows 95 Microsoft NETBEUI
NetBIOS Protocol Adapter Windows 3.1 and Windows for Workgroups 3.11 IBM LAN Support Program version 1.33 or higher, or Microsoft NetBEUI provided by Microsoft Windows for Workgroups version 3.11
LU6.2 Protocol Adapter Windows 3.1 and Windows for Workgroups 3.11 IBM NS for Windows version 1.0
Windows NT Microsoft SNA Server version 3.0
ANO's DCE Integration Protocol Adapter Windows NT and Windows 95 Gradient PC-DCE/32 Runtime Services Kit version 1.03a

DEC Digital version 1.1

ANO's NDS Native Naming Adapter

 Windows 3.1, Windows for Workgroups 3.11

 Novell NetWare Client version 4.1 or above

Note: An Oracle7 Server release 7.2.2 or above for Netware release 4.1 is required.

Windows NT, and Windows 95 Novell NetWare Client 32 version 4.1 or above

Note: An Oracle7 Server release 7.2.2 or above for Netware release 4.1 is required.

NDS Authentication Adapter Windows 3.1, Windows for Workgroups 3.11 Novell NetWare Client version 4.1 or above

Note: An Oracle7 Server release 7.2.2 or above for Netware release 4.1 is required.

Windows NT, and Windows 95 Novell NetWare Client 32 version 4.1 or above

Note: An Oracle7 Server release 7.2.2 or above for Netware release 4.1 is required.

Windows NT Authentication Adapter Windows for Workgroups 3.11, Windows NT, and Windows 95 Microsoft
  1. You must obtain the node name and address from your network administrator and fill in the information while configuring PATHWORKS for Windows NT.

Additional Information
 See Appendix B, "Verifying Parameters and Vendor Adapters for Windows 3.1x." for additional vendor information for Windows Oracle Protocol Adapters.

TCP/IP Protocol Adapter

The TCP/IP Protocol Adapter enables client/server conversation over a network using TCP/IP and SQL*Net. This combination of Oracle products enables an Oracle application on a client to communicate with remote Oracle databases through TCP/IP (if the Oracle database is running on a host system that supports network communication using TCP/IP).

TCP/IP is a combination of two network protocols that facilitate transferring data across a network:
Protocol Description
Transmission Control Protocol (TCP) TCP provides services is a connection-oriented protocol for establishing reliable, sequenced data transfer. TCP ensures that data reaches its destination.
Internet Protocol (IP) IP assembles and addresses data packets for transmission to their network destinations.
Additional Information
 See your operating system documentation.

SPX Protocol Adapter

The SPX Protocol Adapter enables client/server conversation over a network using SPX/IPX and SQL*Net. This combination of Oracle products enables an Oracle application on a client to communicate with remote Oracle databases through SPX/IPX (if the Oracle database is running on a host system that supports network communication using SPX/IPX).

SPX/IPX is a combination of two network protocols that carry data packets between clients and their servers:
Protocol Description
Sequenced Packet Exchange (SPX) SPX is a high-performance communications protocol. SPX is a connection-oriented protocol for establishing a reliable, peer-to-peer connection between the source and destination of a network request before sending any data packets. SPX guarantees delivery, sequencing of packets, and correction of errors encountered.
Internetwork Packet Exchange (IPX) IPX is a connectionless protocol. Connectionless protocols do not establish connections between the source and destination of network requests. Data packets are addressed and sent, but the sender has no guarantee that data is successfully delivered or correctly sequenced.

SPX and IPX are specifically designed for personal computer (PC) local area network (LAN) environments. They are communications protocols suitable for memory-constrained PC workstations. SPX/IPX supports all major PC operating systems.

Additional Information
 See the Novell manual that came with your SPX/IPX software.

DECnet Protocol Adapter

The DECnet Protocol Adapter enables client/server conversation over a network using DECnet and SQL*Net. DECnet is Digital Equipment Corporations' networking and proprietary communication protocol.

DECnet is a collection of software and hardware communications products that lets various computer system users communicate in a network. DECnet's peer-to-peer network environment lets any computer or node running DECnet communicate with all other nodes in the network without depending on a central controlling node. Each node is equally responsive to user requests, letting network users access applications and facilities quickly on other network nodes. DECnet extends operating system use by creating an environment where client and server software is shared and accessed by other DECnet network users.

Many third party vendors on other operating systems and hardware platforms implement the DECnet protocol. DECnet capabilities include:

Named Pipes Protocol Adapter

 The Named Pipes Protocol Adapter enables client/server conversation over a network using Named Pipes and SQL*Net. This combination of Oracle products enables an Oracle application on a client to communicate with remote Oracle databases through Named Pipes (if the Oracle database is running on a host system that supports network communication using Named Pipes).

The Named Pipes Protocol Adapter is a high-level interface providing interprocess communications between clients and servers (distributed applications). One process (the server side of the application) creates the pipe, and the other process (the client side) opens it by name. What one side writes, the other can read, and vice versa. Named Pipes is specifically designed for PC LAN environments.

NetBIOS Protocol Adapter

The Network Basic Input/Output System (NetBIOS) is an API that defines process-to-process communications on a PC LAN.

The Oracle NetBIOS Protocol Adapter for Windows lets an Oracle application on a Windows client machine communicate with remote Oracle7 databases using NetBIOS.

Communication is over an IBM LAN Support Program or Microsoft Network Basic Extended User Interface (NetBEUI).

NetBEUI is part of the transport layer protocol, not the NetBIOS programming interface. In the Windows NT implementation, the programming interface (NetBIOS) is separate from the transport protocol (NetBEUI) to increase flexibility in the layered architecture.

NetBEUI is fast, with a low overhead (number of extra bytes) per frame of data transmitted. The protocol, however, cannot be routed. Thus, NetBEUI is most appropriate in single subnet (continuous network) networks.

NetBEUI provides compatibility with existing LAN Manager, LAN Server, and MS-Net installations. NetBEUI is provided with Windows NT to maintain connectivity to existing LAN Manager and MS-Net based networks.

LU6.2 Protocol Adapter

The Logical Unit Type 6.2 (LU6.2) Protocol Adapter is part of IBM's Advanced Program-to-Program Communication (APPC) architecture. APPC is the IBM peer-to-peer (program-to-program) protocol for a System Network Architecture (SNA) network. SNA is an IBM reference model similar to the Open Systems Interconnect (OSI) model of the International Standards Organization (ISO).

Program-to-program communication protocols provide services for programs on one computer to initiate processes on another computer, thus establishing a dialogue. Peer-to-peer communication is independent of the following:

APPC architecture lets the client and host communicate over an SNA network without forcing the client to emulate a terminal (as in terminal-to-host protocols). APPC architecture allows peer-to-peer communication; the client can initiate communication with the server.

An SNA network with the LU6.2 and Physical Unit Type 2.1 (PU2.1) protocols provides APPC. The LU6.2 protocol defines a conversation between two application programs; LU6.2 is a product-independent LU-type.

The LU6.2 Protocol Adapter lets an Oracle application on a PC communicate with an Oracle7 database. This communication is over an SNA network with the Oracle7 database on a host system that supports APPC.

In addition to these server platforms, LU6.2 is available on operating systems that are client-only platforms.

Bequeath Protocol Adapter

SQL*Net for Windows NT includes a feature called the Bequeath Protocol Adapter. The Bequeath Protocol Adapter:

The Bequeath Adapter enables the client to retrieve information from the database without using the listener. The Bequeath Adapter internally spawns a server process for each client application. In a sense, it does the same operation that a remote listener does for your connection, yet locally.

SQL*Net Configuration Tools

Several configuration tools enable you to configure SQL*Net version 2.3.3 client and server database connections. The tool you use depends upon the size/complexity of the network:
Tool Description
SQL*Net Easy Configuration Use for simple database connections.
Oracle Network Manager Use for complex networks, and advanced SQL*Net features such as Oracle Names and the Advanced Networking Option.
Client Status Monitor and SQLNET.ORA Editor Use to modify the SQLNET.ORA file.
Additional Information
 For more information about the Oracle Network Manager, see:

Client Status Monitor and SQLNET.ORA Editor

The Client Status Monitor provides client connection troubleshooting information about a client workstation and access to the SQLNET.ORA editor. The SQLNET.ORA editor is a tool that enables you to edit parameters in your client's SQLNET.ORA file, including trace parameters.
Additional Information
 See

Oracle Names

Oracle Names is a transparent naming service product that spans across a heterogeneous network with different protocols to resolve names. It stores network names and addresses so that network components can contact one another easily without regard to their physical locations or specific configurations on the network. Access to the names and addresses is through Oracle Names Servers on the network. Oracle Names version 2.0 includes a Dynamic Discovery Option (DDO), which enables servers to register themselves with well-known Name Servers. When this option is used, minimal configuration files are required.

If your network uses a flat naming structure and has a limited number of servers, this option may be appropriate. If you choose not use the DDO, configure Oracle Names Servers by using Oracle Network Manager.

The DDO can be used as a network configuration tool instead of SQL*Net Easy Configuration or Oracle Network Manager. DDO features include:

These features allow:

Advanced Networking Option

 The Advanced Networking Option is an optional products that provides enhanced functionality to SQL*Net. Its set of features provides enhanced security and authentication to your network, enables integration with a Distributed Computing Environment (DCE), and provides access to native directory services through the NDS Native Naming Adapter.

The Advanced Networking Option (ANO) is comprised of the following components:

Additional Information
 See:

Network Security and Single Sign-On

 Network Security is an Oracle network data encryption and checksumming service to ensure secure transmission of data over networks. Network Security uses encryption and authentication engines from RSA Data Security, Incorporated.

The following concepts are explained in the following sections:

Network Security

 Encryption Encryption provides a way to ensure confidentiality of information. Encryption is the transformation of data so that it is unreadable by anyone without a (secret) decryption key. Encryption provides a means to ensure confidentiality of information by keeping its content hidden from anyone for whom it is not intended, even those who can see the encrypted data. For example, one may want to encrypt sensitive information stored on a laptop so that if the laptop is stolen, the data cannot be recovered by the thief.

In symmetric-key encryption, the sender of a message uses a secret key to encrypt the message, and the receiver uses the same secret key to decrypt the message. If Alice and Bob want to communicate, they must each know what the secret key is (and the key must be exchanged in a way that the secrecy of the key is preserved). If Bob and Steve want to communicate, they must also have a separate key (so that, for example, Alice cannot read their messages).

The main drawback of symmetric-key encryption is that, in a system with many users wanting to communicate, the management and distribution of keys becomes overwhelming.

Public Key Cryptography Public key cryptography solves the key management problem of symmetric-key cryptography. In the public key scheme, each person receives a pair of keys:

Each person's public key is published, while the private key is confidential. Messages encrypted with a public key can only be decrypted with the corresponding private key. Messages encrypted with a private key can only be decrypted with the corresponding public key. Keys may not be deduced from each other. The sender and receiver of an encrypted message do not share confidential information, since all communications involve only public keys. Private keys are neither transmitted nor shared.

For example, Alice sends a message to Bob so that only Bob can read it. She encrypts the message with Bob's public key, which is public knowledge. Bob decrypts the message with his private key to read it. Only Bob owns the private key that is able to decrypt the message, and only Bob can read the message.

Digital Signatures Public key cryptography can be used for authentication (digital signatures) as well as for privacy (encryption). A digital signature is a non-forgeable way of authenticating the sender of a message and supports non-repudiation of messages. Only the purported sender of a message could actually have sent the message. The sender cannot later claim that someone impersonated her or him.

For example, Alice orders equipment, and the purchasing department (where Bob works) requires a digital signature on the purchase order. To sign the purchase order, Alice performs a computation (hash) of the message, encrypts the hash with her private key, and attaches the encrypted hash (digital signature) to the order before sending it. To verify the signature, Bob decrypts the hash with Alice's public key, performs the same computation on the order, and compares the results with Alice's decrypted hash. If the results are the same, then only Alice could have sent the message.

Digital Certificates To establish confidence in the identity associated with a public key, public keys are incorporated into digital certificates. A digital certificate is a binding of a public key to a user by a trusted third party known as a Certificate Authority (CA). The public key and user identity, together with other information such as the certificate expiration date, are digitally signed by the CA. CAs serve as electronic notaries, attesting to the identity of users and the validity of their public keys.

Certificates may be issued in several ways. For instance, Alice may generate her own key pair and send the public key to an appropriate CA with some proof of her identification. The CA verifies the identification and takes other steps to ensure that Alice is really Alice. Next, the CA sends Alice a certificate attesting to the binding between Alice and her public key, along with a hierarchy of certificates verifying the CA's public key. Alice can present this certificate chain whenever necessary to demonstrate the legitimacy of her public key.

Alternatively, the key pair may be generated by an administrator in a way that the person generating the keys does not know Alice's private key. Alice's private key may be given to her on a diskette or embedded within a token. Alice's public key is bound to a certificate by the CA, a copy given to Alice and a copy stored in a public database for ready access.

Certificate Revocation Lists Public keys are sometimes revoked before their expiration date. Such instances include compromised keys or employment termination. A CRL lists such revoked public keys. CAs maintain CRLs and provide information about revoked keys originally certified by the CA. CRLs list only current keys, since expired keys are not valid. A revoked key past the expiration date is removed from the list. Although CRLs are maintained in a distributed manner, networked sites may provide a centralized location for the latest CRLs.
Note
 See the RSA Data Security website at http://www.rsa.comfor more information about public key cryptography and digital signatures.

Supported Algorithms The following algorithms are supported for encryption and checksumming:

Single Sign-On

 Single sign-on allows users to access multiple accounts and applications with a single password, eliminating the need for multiple passwords for users and simplifies management of user accounts and passwords for system administrators.

Authentication Adapters Provide Enhanced Security

Centralized, secure authentication services allow you to have high confidence in the identity of users, clients, and servers in distributed environments. Network authentication services also can provide the benefit of single sign-on for users.

For this release of the following adapters are supported:

NDS Native Naming Adapter
Note
 NDS Native Naming Adapter is shipped as a part of SQL*Net.

The NetWare Directory Services (NDS) Native Naming Adapter enables you to integrate Oracle service names (or database aliases) and addresses into your existing non-Oracle name services. This feature allows users from multiple points to use a single login to access a multi-server and multi-database network, and view the entire network under a single directory tree.

The NDS Native Naming Adapter uses the NDS naming environment to store service names and addresses of Oracle7 Server for NetWare databases. This environment allows users to connect to Oracle7 databases whose server name is defined as an NDS object name.

To use the NDS Naming Adapter, you must configure your Windows client machine to a Novell NetWare 4.x Workstation.
Additional Information
 See:

DCE Integration

Distributed Computing Environment (DCE) Integration enables users to transparently use Oracle tools and applications to access Oracle7 servers in a DCE environment. Oracle's DCE Integration product is comprised of two major components: the DCE Communications/Security Adapter and the DCE CDS (Cell Directory Service) Naming Adapter.
Note
 DCE Integration for Windows is only available for version 2.1.4.1.6 of SQL*Net and only compatible with one client version of SQL*Net 2.1.4.1.6. It also does not support the CDS naming adapter.

DCE Communication/Security Adapter

The DCE Communication/Security Adapter provides:

DCE CDS Naming Adapter

 DCE Integration registers Oracle7 connect descriptors in the DCE CDS Naming Adapter, allowing them to be transparently accessed across the entire DCE environment. Users can connect to Oracle database servers in a DCE environment using familiar Oracle service names.

The DCE CDS Naming Adapter offers a distributed, replicated repository service for name, address, and attributes of objects across the network. Because servers register their name and address information in the DCE CDS Naming Adapter, Oracle clients can make location-independent connections to Oracle7 servers. Services can be relocated without any changes to the client configuration. An Oracle utility is provided to load the Oracle service names (with corresponding connect descriptors) into the DCE CDS Naming Adapter. After the names are loaded, Oracle connect descriptors can be viewed from a central location with standard DCE tools.

NDS Authentication Adapter

The NDS Authentication Adapter for clients lets a single login access a multi-server and multi-database network and view the entire network under a single NDS directory tree.
Additional Information
 See "Using the NDS Authentication Adapter."

Windows NT Authentication Adapter

The Windows NT Authentication Adapter allows operating system authentication to be performed between a client and an Oracle7 Server on Windows NT.
Additional Information
 See "Using the Windows NT Networking Authentication Adapter."


Go to previous file in sequence Go to next file in sequence
Prev Next		 Oracle
Copyright © 1996 Oracle Corporation.
All Rights Reserved.		 Go to Product Documentation Library
Library		 Go to books for this product
Product		 Go to Contents for this book
Contents		 Go to Index
Index