Remote Debugging Fails with ORA-24247

(Doc ID 1932482.1)

Last updated on NOVEMBER 25, 2016

Applies to:

Oracle Database - Enterprise Edition - Version 12.1.0.1 and later
Information in this document applies to any platform.

Symptoms

On : 12.1.0.1 version, Database Security

When attempting to use an EXEC DBMS_DEBUG_JDWP.CONNECT_TCP(<host_ip>, <port>)
the following error occurs.

ERROR
-----------------------
ORA-24247


STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Create the ACL:
sqlplus / as sysdba

BEGIN
 DBMS_NETWORK_ACL_ADMIN.CREATE_ACL (
  acl => 'utlpkg.xml',
  description => 'allow access to the lhost for utl',
  principal => 'ACES',
  is_grant => TRUE,
  privilege => 'connect',
  start_date => null,
  end_date => null);
END;
/

BEGIN
  DBMS_NETWORK_ACL_ADMIN.assign_acl (
  acl => 'utlpkg.xml',
  host => 'olite-linux.com',
  lower_port => '25',
  upper_port => '25');
  COMMIT;
END;
/
commit;

2) connect ACES

EXEC DBMS_DEBUG_JDWP.CONNECT_TCP('olite-linux.com, '25')

ERROR at line 1:
ORA-24247: network access denied by access control list (ACL)
ORA-06512: at "SYS.DBMS_DEBUG_JDWP", line 68
ORA-06512: at line 1


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms