My Oracle Support Banner

Remote Debugging Fails with ORA-24247 (Doc ID 1932482.1)

Last updated on APRIL 26, 2018

Applies to:

Oracle Database - Enterprise Edition - Version 12.1.0.1 and later
Information in this document applies to any platform.

Symptoms

On : 12.1.0.1 version, Database Security

When attempting to use an EXEC DBMS_DEBUG_JDWP.CONNECT_TCP(<host_ip>, <port>)
the following error occurs.

ERROR
-----------------------
ORA-24247


STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Create the ACL:
sqlplus / as sysdba

BEGIN
 DBMS_NETWORK_ACL_ADMIN.CREATE_ACL (
  acl => 'utlpkg.xml',
  description => 'allow access to the lhost for utl',
  principal => 'ACES',
  is_grant => TRUE,
  privilege => 'connect',
  start_date => null,
  end_date => null);
END;
/

BEGIN
  DBMS_NETWORK_ACL_ADMIN.assign_acl (
  acl => 'utlpkg.xml',
  host => 'olite-linux.com',
  lower_port => '25',
  upper_port => '25');
  COMMIT;
END;
/
commit;

2) connect ACES

EXEC DBMS_DEBUG_JDWP.CONNECT_TCP('olite-linux.com, '25')

ERROR at line 1:
ORA-24247: network access denied by access control list (ACL)
ORA-06512: at "SYS.DBMS_DEBUG_JDWP", line 68
ORA-06512: at line 1


Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.
My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.