Denying Access To Oracle Database via tools like Toad, SQL Developer using Request Based Authentication

Question

I need to restrict access to Oracle Database via tools like Toad, SQL Developer etc. Only the request coming from Application Server should be allowed to connect successfully.

Answer 1

You can:

• Restrict access to DB on Firewall level
• Restrict access to DB via Listener configuration (listener.ora)
• Restrict access to DB via logon trigger on schema. You can find templates of such a trigger on the Internet. Basically you have to select from sys_context function(or from v$session view). This will tell you all the information you need. Then any exception raised from logon trigger aborts the connection.
• Grant access to users, but do not give them any privs. Then grant necessary privs to password protected role and enable this role via "SET ROLE" ONLY from the application.

Or you can mix these approaches as you want.