{"id":928,"date":"2026-04-17T04:12:31","date_gmt":"2026-04-17T04:12:31","guid":{"rendered":"https:\/\/www.devopsschool.com\/tutorials\/oracle-cloud-marketplace-guide-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-marketplace\/"},"modified":"2026-04-17T04:12:31","modified_gmt":"2026-04-17T04:12:31","slug":"oracle-cloud-marketplace-guide-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-marketplace","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/tutorials\/oracle-cloud-marketplace-guide-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-marketplace\/","title":{"rendered":"Oracle Cloud Marketplace Guide Tutorial: Architecture, Pricing, Use Cases, and Hands-On Guide for Marketplace"},"content":{"rendered":"\n

Category<\/h2>\n\n\n\n

Marketplace<\/p>\n\n\n\n

1. Introduction<\/h2>\n\n\n\n

Oracle Cloud Marketplace Guide<\/strong> is a practical guide to using Oracle Cloud Marketplace<\/strong>\u2014Oracle\u2019s catalog of third\u2011party and Oracle\u2011provided solutions that you can deploy into your Oracle Cloud Infrastructure (OCI) tenancy.<\/p>\n\n\n\n

In simple terms: Marketplace Guide<\/strong> helps you find prebuilt software (images, applications, and deployable stacks), accept the right terms, and launch it safely into your OCI environment without building everything from scratch.<\/p>\n\n\n\n

Technically, Oracle Cloud Marketplace is a console-driven (and in some cases API\/automation-assisted) distribution channel for software that typically deploys onto OCI services such as Compute<\/strong>, VCN networking<\/strong>, Block Volumes<\/strong>, OKE<\/strong>, and Resource Manager (Terraform)<\/strong>. Many listings require a subscription\/terms acceptance step, and pricing can include OCI infrastructure charges<\/strong>, publisher license charges<\/strong>, or both.<\/p>\n\n\n\n

The core problem Marketplace Guide solves: reducing time-to-value and deployment risk<\/strong> by using vetted, repeatable solution packages\u2014while still requiring you to architect for security, networking, IAM, cost control, and operations.<\/p>\n\n\n\n

\n

Naming note (important): \u201cMarketplace Guide\u201d is not generally presented as a standalone OCI product SKU; it\u2019s best understood as a guide to Oracle Cloud Marketplace<\/strong> capabilities and workflows. Verify current naming and scope in the official docs: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Marketplace\/home.htm<\/p>\n<\/blockquote>\n\n\n\n

\n\n\n\n

2. What is Marketplace Guide?<\/h2>\n\n\n\n

Official purpose (scope)<\/strong>\nMarketplace Guide (Oracle Cloud Marketplace) exists to help customers discover, evaluate, procure\/subscribe to, and deploy software solutions on Oracle Cloud\u2014ranging from open-source images to commercial partner appliances and SaaS integrations.<\/p>\n\n\n\n

Core capabilities (what you can do)<\/strong>\n– Browse and search listings<\/strong> (by category, publisher, pricing model, supported regions, and more).\n– Review listing details<\/strong> (architecture, prerequisites, license terms, support model, and deployment instructions).\n– Subscribe \/ accept terms<\/strong> for a listing (often required before deployment).\n– Deploy<\/strong> a solution into your tenancy, commonly via:\n – VM images<\/strong> (launching a Compute instance from a Marketplace image)\n – Resource Manager stacks<\/strong> (Terraform-based deployments)\n – Other packaging models depending on the listing (availability varies; verify per listing)<\/p>\n\n\n\n

Major components (conceptual)<\/strong>\n– Marketplace listing<\/strong>: The product page\/definition (publisher, versions, documentation, pricing, support).\n– Subscription\/terms acceptance<\/strong>: Your tenancy\u2019s acknowledgement of license terms for the listing.\n– Deployment mechanism<\/strong>: Image-based or stack-based deployment that creates OCI resources.\n– Billing relationship<\/strong>: Marketplace purchases may appear on your Oracle bill; the exact model depends on the listing (publisher-provided pricing vs BYOL vs free).<\/p>\n\n\n\n

Service type<\/strong>\n– A catalog\/procurement and deployment portal<\/strong> integrated into OCI Console (and sometimes accessible via APIs\/automation, depending on feature support).<\/p>\n\n\n\n

Scope: regional\/global\/tenancy<\/strong>\n– The Marketplace UI is effectively global<\/strong> in the sense you access it from the OCI Console.\n– Deployments are regional<\/strong>: the actual resources created (Compute, VCN, OKE, etc.) live in a chosen OCI region<\/strong> and compartment<\/strong>.\n– Subscriptions\/terms acceptance are generally tenancy-scoped<\/strong>, while deployments are compartment-scoped<\/strong> (governed by IAM policies).<\/p>\n\n\n\n

How it fits into the Oracle Cloud ecosystem<\/strong>\nMarketplace Guide sits at the \u201csolution acquisition\u201d layer:\n– Marketplace<\/strong> provides solution packages.\n– IAM<\/strong> controls who can subscribe\/deploy.\n– Resource Manager<\/strong> (Terraform) and Compute<\/strong> perform the actual deployment.\n– Logging\/Auditing\/Monitoring<\/strong> provide operational governance after deployment.\n– Billing\/Cost Management<\/strong> tracks infrastructure usage and any marketplace charges.<\/p>\n\n\n\n

\n\n\n\n

3. Why use Marketplace Guide?<\/h2>\n\n\n\n

Business reasons<\/h3>\n\n\n\n
    \n
  • Faster procurement and deployment<\/strong> than traditional vendor contracting + manual installs.<\/li>\n
  • Lower project risk<\/strong> by using established solution packages with published deployment guidance.<\/li>\n
  • Broader solution choice<\/strong>: security, networking, observability, data tools, DevOps tools, and industry apps.<\/li>\n<\/ul>\n\n\n\n

    Technical reasons<\/h3>\n\n\n\n
      \n
    • Repeatable deployments<\/strong> using versioned images and\/or Infrastructure-as-Code stacks.<\/li>\n
    • Reference architectures<\/strong> embedded in listings (varies by publisher).<\/li>\n
    • Integration with OCI primitives<\/strong> (VCN, NSGs, IAM, Resource Manager).<\/li>\n<\/ul>\n\n\n\n

      Operational reasons<\/h3>\n\n\n\n
        \n
      • Standardization<\/strong>: teams can converge on approved marketplace listings.<\/li>\n
      • Support clarity<\/strong>: listings typically state who supports what (publisher vs Oracle vs community).<\/li>\n
      • Lifecycle management<\/strong>: versioned artifacts, documentation, and sometimes upgrade paths (varies; verify per listing).<\/li>\n<\/ul>\n\n\n\n

        Security\/compliance reasons<\/h3>\n\n\n\n
          \n
        • Centralized governance<\/strong>: control who can deploy what via compartments and IAM policies.<\/li>\n
        • Auditable actions<\/strong>: subscription and deployment activities can be audited (via OCI Audit service).<\/li>\n
        • Terms and licensing clarity<\/strong>: acceptance and billing models are explicit in listing terms.<\/li>\n<\/ul>\n\n\n\n

          Scalability\/performance reasons<\/h3>\n\n\n\n
            \n
          • Marketplace itself doesn\u2019t \u201cscale\u201d workloads\u2014OCI services do. But Marketplace Guide helps you pick architectures that scale (e.g., HA patterns, load balancers, cluster deployments) when publishers provide them.<\/li>\n<\/ul>\n\n\n\n

            When teams should choose Marketplace Guide<\/h3>\n\n\n\n
              \n
            • You need a production-ready starting point<\/strong> (images\/stacks) rather than building from scratch.<\/li>\n
            • You want to standardize<\/strong> deployments across multiple teams\/compartments.<\/li>\n
            • You want faster evaluation<\/strong> of tools (security appliances, monitoring stacks, CI\/CD tools).<\/li>\n
            • You have a governance model and want controlled self-service.<\/li>\n<\/ul>\n\n\n\n

              When teams should not choose it<\/h3>\n\n\n\n
                \n
              • You require fully custom builds<\/strong> and prefer hardened golden images built internally.<\/li>\n
              • Your compliance requires source code review<\/strong> and you can\u2019t accept third-party binaries\/images.<\/li>\n
              • The listing\u2019s support model, licensing, or region availability<\/strong> doesn\u2019t match your needs.<\/li>\n
              • You need a solution that Marketplace doesn\u2019t provide\u2014or provides only in a form that conflicts with your architecture (e.g., single-node deployments when you need HA).<\/li>\n<\/ul>\n\n\n\n
                \n\n\n\n

                4. Where is Marketplace Guide used?<\/h2>\n\n\n\n

                Industries<\/h3>\n\n\n\n
                  \n
                • Financial services<\/strong>: security appliances, SIEM integrations, hardened OS images (subject to compliance).<\/li>\n
                • Healthcare<\/strong>: HIPAA-like controls and auditability (verify specific compliance needs).<\/li>\n
                • Retail\/e-commerce<\/strong>: web platforms, WAF\/security, observability.<\/li>\n
                • Manufacturing\/IoT<\/strong>: data ingestion pipelines, edge-related tools (often hybrid).<\/li>\n
                • Public sector<\/strong>: controlled catalogs, compartment-based governance.<\/li>\n<\/ul>\n\n\n\n

                  Team types<\/h3>\n\n\n\n
                    \n
                  • Platform engineering teams building \u201cpaved roads\u201d<\/li>\n
                  • DevOps\/SRE teams standardizing observability and deployment patterns<\/li>\n
                  • Security teams rolling out network\/security appliances<\/li>\n
                  • Application teams needing quick environments for PoCs and pilots<\/li>\n
                  • Procurement\/FinOps teams aligning software spend with cloud consumption<\/li>\n<\/ul>\n\n\n\n

                    Workloads and architectures<\/h3>\n\n\n\n
                      \n
                    • Single VM appliances (common for network\/security tools)<\/li>\n
                    • Web apps and CMS stacks (dev\/test and small production)<\/li>\n
                    • Logging\/monitoring stacks (dev\/test or scaled-out production if designed properly)<\/li>\n
                    • CI\/CD components (runners, artifact tools) depending on listing availability<\/li>\n
                    • Kubernetes add-ons and platform tooling (verify packaging model per listing)<\/li>\n<\/ul>\n\n\n\n

                      Real-world deployment contexts<\/h3>\n\n\n\n
                        \n
                      • PoC environments<\/strong>: fast evaluation of products with minimal setup.<\/li>\n
                      • Dev\/test<\/strong>: repeatable environments aligned with production.<\/li>\n
                      • Production<\/strong>: when listings support HA, scaling, and operational best practices.<\/li>\n<\/ul>\n\n\n\n

                        Production vs dev\/test usage<\/h3>\n\n\n\n
                          \n
                        • Dev\/test<\/strong>: prefer free\/BYOL listings, Always Free eligible shapes where possible, smaller footprints.<\/li>\n
                        • Production<\/strong>: require documented HA, patching\/upgrades, monitoring, backup\/DR, and clear support SLAs.<\/li>\n<\/ul>\n\n\n\n
                          \n\n\n\n

                          5. Top Use Cases and Scenarios<\/h2>\n\n\n\n

                          Below are realistic ways teams use Marketplace Guide in Oracle Cloud.<\/p>\n\n\n\n

                          1) Deploy a security appliance into a hub VCN<\/h3>\n\n\n\n
                            \n
                          • Problem:<\/strong> You need centralized traffic inspection (north-south and\/or east-west).<\/li>\n
                          • Why Marketplace Guide fits:<\/strong> Many security vendors publish validated OCI images and reference patterns.<\/li>\n
                          • Example:<\/strong> A security team deploys a partner firewall image into a shared services VCN, integrates route tables, and funnels workload subnets through inspection.<\/li>\n<\/ul>\n\n\n\n

                            2) Launch an observability stack for a new product team<\/h3>\n\n\n\n
                              \n
                            • Problem:<\/strong> Teams need logs\/metrics\/traces quickly without long platform lead time.<\/li>\n
                            • Why it fits:<\/strong> Marketplace listings can provide deployable stacks with dependencies and defaults.<\/li>\n
                            • Example:<\/strong> A platform team deploys a monitoring stack into a tooling compartment and grants read-only access to app teams.<\/li>\n<\/ul>\n\n\n\n

                              3) Standardize \u201cgolden\u201d base images for application VMs<\/h3>\n\n\n\n
                                \n
                              • Problem:<\/strong> Inconsistent VM builds create patching and security drift.<\/li>\n
                              • Why it fits:<\/strong> Marketplace images can provide maintained baselines (publisher-dependent).<\/li>\n
                              • Example:<\/strong> An ops team chooses a hardened OS image listing and mandates it via internal standards.<\/li>\n<\/ul>\n\n\n\n

                                4) Accelerate migration by deploying compatible middleware components<\/h3>\n\n\n\n
                                  \n
                                • Problem:<\/strong> A legacy app depends on a specific middleware distribution.<\/li>\n
                                • Why it fits:<\/strong> Marketplace can offer vendor-supported images for middleware components.<\/li>\n
                                • Example:<\/strong> A migration team deploys a vendor\u2019s middleware VM image and connects it to OCI Database services.<\/li>\n<\/ul>\n\n\n\n

                                  5) Rapid PoC of a commercial data tool (BYOL)<\/h3>\n\n\n\n
                                    \n
                                  • Problem:<\/strong> You need to validate a tool before buying.<\/li>\n
                                  • Why it fits:<\/strong> BYOL listings allow you to deploy quickly using an existing license.<\/li>\n
                                  • Example:<\/strong> A data engineering team deploys a BYOL ETL tool into a sandbox region, tests with Object Storage, and tears it down.<\/li>\n<\/ul>\n\n\n\n

                                    6) Deploy a multi-tier application using Resource Manager stacks<\/h3>\n\n\n\n
                                      \n
                                    • Problem:<\/strong> Manual provisioning is slow and error-prone.<\/li>\n
                                    • Why it fits:<\/strong> Terraform stacks can create VCN, subnets, instances, LB, and IAM in one flow.<\/li>\n
                                    • Example:<\/strong> A developer deploys a sample 3-tier app stack to learn OCI networking patterns.<\/li>\n<\/ul>\n\n\n\n

                                      7) Create a secure jump\/bastion pattern for operations access<\/h3>\n\n\n\n
                                        \n
                                      • Problem:<\/strong> Admin access to private subnets must be controlled.<\/li>\n
                                      • Why it fits:<\/strong> Some listings provide hardened bastion\/jump host setups (verify availability).<\/li>\n
                                      • Example:<\/strong> An ops team deploys a hardened SSH bastion image and restricts access via NSGs and IAM.<\/li>\n<\/ul>\n\n\n\n

                                        8) Procurement-friendly deployment of licensed partner software<\/h3>\n\n\n\n
                                          \n
                                        • Problem:<\/strong> You need chargeback and licensing aligned with cloud billing.<\/li>\n
                                        • Why it fits:<\/strong> Some Marketplace listings support metered billing integrated with OCI billing (verify per listing).<\/li>\n
                                        • Example:<\/strong> Finance wants a single invoice approach; the team selects a listing with integrated billing.<\/li>\n<\/ul>\n\n\n\n

                                          9) Deploy developer tools in isolated compartments<\/h3>\n\n\n\n
                                            \n
                                          • Problem:<\/strong> Tooling needs isolation from production workloads.<\/li>\n
                                          • Why it fits:<\/strong> Compartment-scoped governance works well with Marketplace deployments.<\/li>\n
                                          • Example:<\/strong> A DevOps team deploys a CI runner tool from Marketplace into a \u201cTooling\u201d compartment with tight IAM.<\/li>\n<\/ul>\n\n\n\n

                                            10) Build an internal catalog of \u201capproved\u201d solutions<\/h3>\n\n\n\n
                                              \n
                                            • Problem:<\/strong> Teams deploy random software, increasing security and support risk.<\/li>\n
                                            • Why it fits:<\/strong> Marketplace enables a curated approach: approved publishers\/listings + IAM restrictions.<\/li>\n
                                            • Example:<\/strong> Platform engineering publishes internal guidance: \u201cUse only these Marketplace listings for X.\u201d<\/li>\n<\/ul>\n\n\n\n

                                              11) Disaster recovery and rebuild automation<\/h3>\n\n\n\n
                                                \n
                                              • Problem:<\/strong> Rebuilding critical tooling after an incident takes too long.<\/li>\n
                                              • Why it fits:<\/strong> Versioned listings and IaC stacks support fast re-provisioning.<\/li>\n
                                              • Example:<\/strong> An SRE team uses a Marketplace stack as part of DR runbooks to recreate a toolchain environment.<\/li>\n<\/ul>\n\n\n\n

                                                12) Training and labs at low cost<\/h3>\n\n\n\n
                                                  \n
                                                • Problem:<\/strong> Students need real systems without spending days configuring.<\/li>\n
                                                • Why it fits:<\/strong> Prebuilt images and stacks reduce setup time.<\/li>\n
                                                • Example:<\/strong> An instructor uses a free Marketplace listing to teach VCN + Compute + security lists basics.<\/li>\n<\/ul>\n\n\n\n
                                                  \n\n\n\n

                                                  6. Core Features<\/h2>\n\n\n\n
                                                  \n

                                                  Note: Exact features depend on Oracle Cloud Marketplace\u2019s current implementation and on each listing. Verify in the official docs and in the specific listing you choose: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Marketplace\/home.htm<\/p>\n<\/blockquote>\n\n\n\n

                                                  1) Search and discovery across categories<\/h3>\n\n\n\n
                                                    \n
                                                  • What it does:<\/strong> Provides filtering\/search for listings by type, publisher, and category.<\/li>\n
                                                  • Why it matters:<\/strong> Reduces time spent evaluating solutions.<\/li>\n
                                                  • Practical benefit:<\/strong> Faster selection of an image\/stack aligned with your workload.<\/li>\n
                                                  • Caveat:<\/strong> Results vary by region and tenancy; some listings may not be available everywhere.<\/li>\n<\/ul>\n\n\n\n

                                                    2) Listing detail pages with documentation and support info<\/h3>\n\n\n\n
                                                      \n
                                                    • What it does:<\/strong> Shows publisher docs, deployment instructions, and support contacts\/model.<\/li>\n
                                                    • Why it matters:<\/strong> Prevents ambiguous ownership during incidents.<\/li>\n
                                                    • Practical benefit:<\/strong> You can establish operational responsibility before going live.<\/li>\n
                                                    • Caveat:<\/strong> Documentation quality varies by publisher.<\/li>\n<\/ul>\n\n\n\n

                                                      3) Terms acceptance \/ subscription workflow<\/h3>\n\n\n\n
                                                        \n
                                                      • What it does:<\/strong> Requires acceptance of license terms for many listings.<\/li>\n
                                                      • Why it matters:<\/strong> Legal compliance and billing correctness.<\/li>\n
                                                      • Practical benefit:<\/strong> A clear \u201cwho accepted what and when\u201d point (auditability depends on your governance).<\/li>\n
                                                      • Caveat:<\/strong> Acceptance may be tenancy-wide; coordinate with procurement\/security.<\/li>\n<\/ul>\n\n\n\n

                                                        4) Image-based deployments (Compute instances from Marketplace images)<\/h3>\n\n\n\n
                                                          \n
                                                        • What it does:<\/strong> Lets you launch a VM from a Marketplace-provided image.<\/li>\n
                                                        • Why it matters:<\/strong> Speeds up provisioning with preinstalled software.<\/li>\n
                                                        • Practical benefit:<\/strong> Fewer manual steps; consistent baseline.<\/li>\n
                                                        • Caveat:<\/strong> You still own patching, hardening, and network exposure unless the listing explicitly manages it.<\/li>\n<\/ul>\n\n\n\n

                                                          5) Stack-based deployments (OCI Resource Manager \/ Terraform)<\/h3>\n\n\n\n
                                                            \n
                                                          • What it does:<\/strong> Deploys a set of OCI resources from a published stack.<\/li>\n
                                                          • Why it matters:<\/strong> Infrastructure-as-Code repeatability and safer changes.<\/li>\n
                                                          • Practical benefit:<\/strong> One workflow can create network, compute, load balancers, IAM artifacts, etc.<\/li>\n
                                                          • Caveat:<\/strong> Variable sets differ per stack; review before apply. Ensure least-privilege IAM for Resource Manager.<\/li>\n<\/ul>\n\n\n\n

                                                            6) Versioning of listing artifacts<\/h3>\n\n\n\n
                                                              \n
                                                            • What it does:<\/strong> Many listings provide versions (image versions or stack versions).<\/li>\n
                                                            • Why it matters:<\/strong> Reproducibility and controlled upgrades.<\/li>\n
                                                            • Practical benefit:<\/strong> You can pin versions for stability and test upgrades in dev first.<\/li>\n
                                                            • Caveat:<\/strong> Publishers may deprecate versions; plan upgrade windows.<\/li>\n<\/ul>\n\n\n\n

                                                              7) Billing integration (where applicable)<\/h3>\n\n\n\n
                                                                \n
                                                              • What it does:<\/strong> Some listings support billing through Oracle (metered) or BYOL; others are free.<\/li>\n
                                                              • Why it matters:<\/strong> Avoids surprise spend and procurement issues.<\/li>\n
                                                              • Practical benefit:<\/strong> Aligns consumption with cost tracking.<\/li>\n
                                                              • Caveat:<\/strong> Pricing models vary widely; always read the listing pricing section.<\/li>\n<\/ul>\n\n\n\n

                                                                8) Publisher ecosystem and partner solutions<\/h3>\n\n\n\n
                                                                  \n
                                                                • What it does:<\/strong> Offers access to software from Oracle and third-party publishers.<\/li>\n
                                                                • Why it matters:<\/strong> Wider choice than building everything internally.<\/li>\n
                                                                • Practical benefit:<\/strong> Faster adoption of security\/ops tools and enterprise software.<\/li>\n
                                                                • Caveat:<\/strong> Vendor lock-in can increase; plan exit strategies.<\/li>\n<\/ul>\n\n\n\n

                                                                  9) Compartment-aware deployment targets<\/h3>\n\n\n\n
                                                                    \n
                                                                  • What it does:<\/strong> Deployments can usually be targeted to specific compartments.<\/li>\n
                                                                  • Why it matters:<\/strong> Enables multi-team governance boundaries.<\/li>\n
                                                                  • Practical benefit:<\/strong> Isolation, billing separation, and policy enforcement.<\/li>\n
                                                                  • Caveat:<\/strong> If IAM is too permissive, teams may deploy into the wrong compartments.<\/li>\n<\/ul>\n\n\n\n

                                                                    10) Integration with OCI governance (Audit, IAM, tagging)<\/h3>\n\n\n\n
                                                                      \n
                                                                    • What it does:<\/strong> Marketplace activities and resulting resources can be governed via OCI IAM and monitored via Audit (verify your tenancy configuration).<\/li>\n
                                                                    • Why it matters:<\/strong> Enterprise-grade accountability.<\/li>\n
                                                                    • Practical benefit:<\/strong> You can investigate \u201cwho deployed what\u201d and apply tagging standards.<\/li>\n
                                                                    • Caveat:<\/strong> Governance applies more strongly to the OCI resources created than to the Marketplace catalog itself; confirm audit coverage in your environment.<\/li>\n<\/ul>\n\n\n\n
                                                                      \n\n\n\n

                                                                      7. Architecture and How It Works<\/h2>\n\n\n\n

                                                                      High-level architecture<\/h3>\n\n\n\n

                                                                      Marketplace Guide is the front door to:\n1. Discover<\/strong> a listing in Oracle Cloud Marketplace.\n2. Accept terms \/ subscribe<\/strong> (if required).\n3. Deploy<\/strong> via:\n – Compute image<\/strong> (launch instance)\n – Resource Manager stack<\/strong> (Terraform job)\n4. Manage resulting OCI resources as normal: networking, IAM, monitoring, backups, patching.<\/p>\n\n\n\n

                                                                      Request\/data\/control flow<\/h3>\n\n\n\n
                                                                        \n
                                                                      • Control plane<\/strong>: OCI Console\/Marketplace handles listing selection, subscription, and deployment initiation.<\/li>\n
                                                                      • Provisioning<\/strong>:<\/li>\n
                                                                      • Image flow: provisioning goes through OCI Compute to create an instance with a specific image.<\/li>\n
                                                                      • Stack flow: provisioning goes through OCI Resource Manager to execute Terraform and create resources.<\/li>\n
                                                                      • Data plane<\/strong>: Your deployed workloads (instances, LBs, etc.) handle application traffic inside your VCN.<\/li>\n<\/ul>\n\n\n\n

                                                                        Integrations with related services<\/h3>\n\n\n\n

                                                                        Common integrations include:\n– OCI Identity and Access Management (IAM)<\/strong>: controls who can subscribe\/deploy and where.\n– OCI Resource Manager<\/strong>: executes Terraform stacks.\n– OCI Compute<\/strong>: runs VM instances from Marketplace images.\n– OCI Networking (VCN, Subnets, NSGs, Security Lists)<\/strong>: connectivity and exposure control.\n– OCI Logging\/Audit\/Monitoring<\/strong>: operational telemetry and governance.\n– OCI Vault<\/strong>: secrets for deployed apps (recommended when stacks support it).\n– OCI Object Storage<\/strong>: frequently used by apps for backups\/artifacts (depends on listing).<\/p>\n\n\n\n

                                                                        Dependency services (typical)<\/h3>\n\n\n\n
                                                                          \n
                                                                        • Tenancy, compartments<\/li>\n
                                                                        • VCN\/subnet (created by you or by a stack)<\/li>\n
                                                                        • Compute instances and boot volumes<\/li>\n
                                                                        • Optional: Load Balancer, Bastion, NAT\/Service Gateway, WAF (architecture dependent)<\/li>\n<\/ul>\n\n\n\n

                                                                          Security\/authentication model<\/h3>\n\n\n\n
                                                                            \n
                                                                          • Human users authenticate to OCI and are authorized by IAM policies.<\/li>\n
                                                                          • Resource Manager (if used) runs with permissions to create\/update\/delete resources (via policies).<\/li>\n
                                                                          • Deployed workloads authenticate to other OCI services using:<\/li>\n
                                                                          • Instance Principals \/ Dynamic Groups (recommended where supported)<\/li>\n
                                                                          • API keys or tokens (avoid if possible; use Vault)<\/li>\n
                                                                          • Service accounts within Kubernetes (for OKE-based designs)<\/li>\n<\/ul>\n\n\n\n

                                                                            Networking model<\/h3>\n\n\n\n
                                                                              \n
                                                                            • Marketplace itself does not handle runtime traffic.<\/li>\n
                                                                            • Your design decides:<\/li>\n
                                                                            • public vs private subnets<\/li>\n
                                                                            • ingress\/egress controls<\/li>\n
                                                                            • whether to expose UI\/admin ports publicly (usually avoid)<\/li>\n
                                                                            • whether to use a load balancer\/WAF\/bastion<\/li>\n<\/ul>\n\n\n\n

                                                                              Monitoring\/logging\/governance considerations<\/h3>\n\n\n\n
                                                                                \n
                                                                              • Enable and use:<\/li>\n
                                                                              • OCI Audit<\/strong> for control-plane actions<\/li>\n
                                                                              • OCI Logging<\/strong> for OS\/application logs (agent-based where needed)<\/li>\n
                                                                              • OCI Monitoring<\/strong> for metrics and alarms (compute, LB, DB, etc.)<\/li>\n
                                                                              • Standardize:<\/li>\n
                                                                              • tagging (cost center, owner, environment)<\/li>\n
                                                                              • naming conventions<\/li>\n
                                                                              • patch cadence and golden image strategy<\/li>\n<\/ul>\n\n\n\n

                                                                                Simple architecture diagram (conceptual)<\/h3>\n\n\n\n
                                                                                flowchart LR\n  U[User \/ Engineer] -->|Search & Select| M[Oracle Cloud Marketplace<br\/>Marketplace Guide]\n  M -->|Accept Terms \/ Subscribe| S[Marketplace Subscription]\n  M -->|Deploy via Image| C[OCI Compute Instance]\n  M -->|Deploy via Stack| RM[OCI Resource Manager (Terraform)]\n  RM --> VCN[VCN\/Subnets\/NSGs]\n  RM --> C\n  C --> APP[Application Service]\n  APP -->|Metrics\/Logs| OBS[Monitoring\/Logging]\n  C -->|Audit Events| AUD[OCI Audit]\n<\/code><\/pre>\n\n\n\n
                                                                                Production-style architecture diagram (example pattern)<\/h3>\n\n\n\n
                                                                                flowchart TB\n  subgraph Tenancy[OCI Tenancy]\n    subgraph CompartmentShared[Compartment: Shared Services]\n      RM[Resource Manager Stack<br\/>(from Marketplace listing)]\n      VCN[VCN]\n      subgraph PublicSubnet[Public Subnet]\n        LB[Load Balancer]\n        NAT[NAT Gateway<br\/>(optional)]\n      end\n      subgraph PrivateSubnet[Private Subnet]\n        APP[App VM(s) from Marketplace Image]\n        DB[(Database Service or VM DB)]\n      end\n      WAF[WAF (optional)]\n      BAST[OCI Bastion (recommended)]\n      VAULT[OCI Vault]\n      LOG[Logging]\n      MON[Monitoring\/Alarms]\n      AUD[Audit]\n    end\n  end\n\n  Users[End Users] --> WAF --> LB --> APP\n  Admins[Admins\/Operators] --> BAST --> APP\n  APP --> DB\n  APP --> VAULT\n  APP --> LOG\n  APP --> MON\n  RM --> VCN\n  RM --> APP\n  RM --> LB\n  AUD --> SecOps[Security\/Compliance Review]\n<\/code><\/pre>\n\n\n\n
                                                                                \n\n\n\n
                                                                                8. Prerequisites<\/h2>\n\n\n\n
                                                                                Tenancy and account requirements<\/h3>\n\n\n\n
                                                                                  \n
                                                                                • An Oracle Cloud<\/strong> tenancy with permission to use OCI Console.<\/li>\n
                                                                                • Ability to create or use:<\/li>\n
                                                                                • Compartments<\/li>\n
                                                                                • Networking (VCN\/subnets\/NSGs\/security lists)<\/li>\n
                                                                                • Compute instances<\/li>\n
                                                                                • Resource Manager stacks (if your listing uses stacks)<\/li>\n<\/ul>\n\n\n\n
                                                                                  Permissions \/ IAM roles<\/h3>\n\n\n\n
                                                                                  At minimum, the deploying user\/group typically needs:\n– Permissions to read\/subscribe<\/strong> to Marketplace listings\n– Permissions to create\/manage<\/strong> the resources the listing will deploy (Compute, VCN, etc.)<\/p>\n\n\n\n
                                                                                  OCI IAM policy resource names and verbs can vary by service and may change over time. For Marketplace-related policies, OCI historically used resource types like app-catalog-listings<\/code> and app-catalog-subscriptions<\/code> in some contexts. Verify the exact policy syntax in official IAM docs before applying<\/strong>.<\/p>\n\n\n\n
                                                                                  Start with least privilege:\n– Separate roles for:\n  – Marketplace browsing\/subscription\n  – Deployment execution (Resource Manager \/ Compute)\n  – Network administration<\/p>\n\n\n\n
                                                                                  Billing requirements<\/h3>\n\n\n\n
                                                                                    \n
                                                                                  • A payment method or enterprise agreement may be required depending on listing pricing.<\/li>\n
                                                                                  • Some listings are free but still create billable OCI resources (Compute, storage, load balancer, egress).<\/li>\n<\/ul>\n\n\n\n
                                                                                    Tools (optional but recommended)<\/h3>\n\n\n\n
                                                                                      \n
                                                                                    • OCI Console access (required for most beginners).<\/li>\n
                                                                                    • OCI CLI (optional for verification\/cleanup):<\/li>\n
                                                                                    • https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/API\/SDKDocs\/cliinstall.htm<\/li>\n
                                                                                    • SSH client for VM access (OpenSSH).<\/li>\n
                                                                                    • Terraform knowledge if using Resource Manager stacks (Resource Manager abstracts some Terraform steps, but understanding helps).<\/li>\n<\/ul>\n\n\n\n
                                                                                      Region availability<\/h3>\n\n\n\n
                                                                                        \n
                                                                                      • Marketplace listings may be region-limited<\/strong>.<\/li>\n
                                                                                      • Your tenancy must be subscribed to the target region, and the listing must support it. Always confirm in the listing.<\/li>\n<\/ul>\n\n\n\n
                                                                                        Quotas\/limits<\/h3>\n\n\n\n
                                                                                          \n
                                                                                        • Tenancy limits for:<\/li>\n
                                                                                        • Compute instances \/ OCPUs<\/li>\n
                                                                                        • Public IPs<\/li>\n
                                                                                        • Block volumes<\/li>\n
                                                                                        • Load balancers<\/li>\n
                                                                                        • Resource Manager jobs\/concurrency (if applicable)<\/li>\n
                                                                                        • Always check Service Limits<\/strong> in OCI Console for your region.<\/li>\n<\/ul>\n\n\n\n
                                                                                          Prerequisite services (typical)<\/h3>\n\n\n\n
                                                                                            \n
                                                                                          • VCN (existing or created by stack)<\/li>\n
                                                                                          • IAM policies and groups<\/li>\n
                                                                                          • Compute shapes available in your region (and Free Tier eligibility if you want low cost)<\/li>\n<\/ul>\n\n\n\n
                                                                                            \n\n\n\n
                                                                                            9. Pricing \/ Cost<\/h2>\n\n\n\n
                                                                                            Marketplace Guide (Oracle Cloud Marketplace) does not typically have a simple \u201cper hour\u201d price tag as a standalone service. Costs come from two places:<\/p>\n\n\n\n
                                                                                              \n
                                                                                            1. \n
                                                                                              OCI infrastructure resources created by the listing<\/strong>\n   – Compute hours, boot volumes, block volumes\n   – Load Balancer hours and bandwidth\n   – Network egress\n   – Database services, OKE clusters, etc.<\/p>\n<\/li>\n
                                                                                            2. \n
                                                                                              Marketplace listing charges (publisher license)<\/strong>\n   – Some are free<\/strong>\n   – Some are BYOL<\/strong> (Bring Your Own License)\n   – Some are metered\/paid<\/strong> through Oracle billing or directly via publisher arrangements (depends on listing)<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                              Pricing dimensions to watch<\/h3>\n\n\n\n
                                                                                                \n
                                                                                              • Compute shape and hours<\/strong> (Always Free vs paid)<\/li>\n
                                                                                              • Storage<\/strong>:<\/li>\n
                                                                                              • boot volume size<\/li>\n
                                                                                              • block volume size and performance tier<\/li>\n
                                                                                              • Load balancer<\/strong>: can be a major cost driver for \u201csimple\u201d stacks<\/li>\n
                                                                                              • Network egress<\/strong>: especially for internet-facing apps, updates, and user traffic<\/li>\n
                                                                                              • High availability<\/strong>: multiple instances across ADs\/FDs doubles\/triples costs<\/li>\n
                                                                                              • License metrics<\/strong> (if paid): per OCPU, per instance, per user, per throughput, etc. (varies)<\/li>\n<\/ul>\n\n\n\n
                                                                                                Free tier (if applicable)<\/h3>\n\n\n\n
                                                                                                OCI has an Always Free<\/strong> tier for certain resources (availability and eligible shapes can change). If you want a low-cost Marketplace deployment:\n– Prefer listings that support Always Free eligible compute shapes<\/strong> and minimal extra services.\n– Verify current Always Free details in official docs\/pricing pages.<\/p>\n\n\n\n
                                                                                                Hidden or indirect costs<\/h3>\n\n\n\n
                                                                                                  \n
                                                                                                • Support costs<\/strong> (publisher support subscriptions may be separate).<\/li>\n
                                                                                                • Operational tooling<\/strong>: logging retention, monitoring, SIEM export.<\/li>\n
                                                                                                • Backups<\/strong>: object storage and database backups.<\/li>\n
                                                                                                • Security services<\/strong>: WAF, vulnerability scanning, Bastion.<\/li>\n<\/ul>\n\n\n\n
                                                                                                  Network\/data transfer implications<\/h3>\n\n\n\n
                                                                                                    \n
                                                                                                  • Ingress to OCI is typically free; egress<\/strong> to the internet is commonly charged (region-dependent).<\/li>\n
                                                                                                  • Traffic between regions can be charged.<\/li>\n
                                                                                                  • If your Marketplace deployment serves internet users, model egress carefully.<\/li>\n<\/ul>\n\n\n\n
                                                                                                    How to optimize cost<\/h3>\n\n\n\n
                                                                                                      \n
                                                                                                    • Start in dev\/test with:<\/li>\n
                                                                                                    • Always Free shapes (where compatible)<\/li>\n
                                                                                                    • single-instance deployments<\/li>\n
                                                                                                    • minimal storage sizes<\/li>\n
                                                                                                    • no load balancer unless required<\/li>\n
                                                                                                    • Avoid leaving PoCs running\u2014automate teardown.<\/li>\n
                                                                                                    • For production:<\/li>\n
                                                                                                    • right-size shapes using monitoring<\/li>\n
                                                                                                    • use autoscaling where applicable (for app tiers)<\/li>\n
                                                                                                    • evaluate license models (BYOL vs metered)<\/li>\n<\/ul>\n\n\n\n
                                                                                                      Example low-cost starter estimate (non-numeric)<\/h3>\n\n\n\n
                                                                                                      A low-cost Marketplace proof-of-concept typically includes:\n– 1 small VM instance (Always Free eligible if supported)\n– 1 boot volume\n– 1 public IP\n– A VCN with a public subnet and security rules<\/p>\n\n\n\n
                                                                                                      Total cost can be near-zero<\/strong> if all components fit Always Free and egress is minimal\u2014but verify eligibility and current limits<\/strong>.<\/p>\n\n\n\n
                                                                                                      Example production cost considerations (non-numeric)<\/h3>\n\n\n\n
                                                                                                      A production Marketplace-based deployment often adds:\n– Multiple VMs across fault domains\/availability domains\n– Load balancer + health checks\n– Private subnets, NAT, service gateways\n– WAF\n– Central logging, longer retention\n– Backups and DR copies\n– Paid licenses\/support from publisher<\/p>\n\n\n\n
                                                                                                      Official pricing references<\/h3>\n\n\n\n
                                                                                                        \n
                                                                                                      • Oracle Cloud pricing landing page: https:\/\/www.oracle.com\/cloud\/pricing\/<\/li>\n
                                                                                                      • OCI price list: https:\/\/www.oracle.com\/cloud\/price-list\/<\/li>\n
                                                                                                      • OCI cost estimator (verify current URL\/availability): https:\/\/www.oracle.com\/cloud\/cost-estimator.html<\/li>\n
                                                                                                      • Marketplace listing pages include their own pricing\/licensing sections (review per listing).<\/li>\n<\/ul>\n\n\n\n
                                                                                                        \n\n\n\n
                                                                                                        10. Step-by-Step Hands-On Tutorial<\/h2>\n\n\n\n
                                                                                                        This lab demonstrates a safe, beginner-friendly workflow that is realistic across many tenancies: subscribe to a free Marketplace listing and deploy it into a compartment<\/strong>, then verify and clean up.<\/p>\n\n\n\n
                                                                                                        Because Marketplace inventory changes over time and differs by region\/tenancy, this tutorial uses decision points<\/strong> where you select an available Free<\/strong> listing (image or stack). The steps remain executable, but you must choose a listing that exists in your region.<\/p>\n\n\n\n
                                                                                                        Objective<\/h3>\n\n\n\n
                                                                                                          \n
                                                                                                        • Use Oracle Cloud Marketplace Guide<\/strong> to:\n  1. Find a free Marketplace listing\n  2. Accept terms (subscribe)\n  3. Deploy the listing (preferably via a stack or VM image)\n  4. Validate the deployment\n  5. Clean up all resources to avoid cost<\/li>\n<\/ul>\n\n\n\n
                                                                                                          Lab Overview<\/h3>\n\n\n\n
                                                                                                          You will:\n– Create (or choose) a compartment for the lab\n– Locate a free listing (preferably a simple web app\/demo stack or utility VM image)\n– Deploy into a new or existing VCN\n– Validate via public IP \/ console checks\n– Terminate resources and delete related networking (if created solely for the lab)<\/p>\n\n\n\n
                                                                                                          \n
                                                                                                          Cost control tip: If you want the lowest cost, aim for an Always Free eligible compute shape<\/strong> and avoid listings that create a Load Balancer<\/strong> or multiple instances.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                          \n\n\n\n
                                                                                                          Step 1: Prepare a compartment and tags (governance first)<\/h3>\n\n\n\n
                                                                                                            \n
                                                                                                          1. In OCI Console, open the navigation menu \u2192 Identity & Security<\/strong> \u2192 Compartments<\/strong>.<\/li>\n
                                                                                                          2. Click Create Compartment<\/strong>.<\/li>\n
                                                                                                          3. Name it: cmp-marketplace-lab<\/code> (example)<\/li>\n
                                                                                                          4. (Optional) Add a description and tags such as:\n   – Environment=Lab<\/code>\n   – Owner=<your-name-or-team><\/code>\n   – CostCenter=Training<\/code><\/li>\n<\/ol>\n\n\n\n
                                                                                                            Expected outcome:<\/strong> A dedicated compartment exists to keep lab resources isolated.<\/p>\n\n\n\n
                                                                                                            Verification:<\/strong>\n– You can see cmp-marketplace-lab<\/code> in the compartment list.\n– You can select it from the compartment picker.<\/p>\n\n\n\n
                                                                                                            \n\n\n\n
                                                                                                            Step 2: Confirm you have permissions (IAM)<\/h3>\n\n\n\n
                                                                                                            You need permission to:\n– Browse\/subscribe to Marketplace listings\n– Create resources (at least Compute + Networking; and Resource Manager if using stacks)<\/p>\n\n\n\n
                                                                                                            If you are not an admin, ask your tenancy admin to grant you the minimum required policies. Because policy statements vary based on what you deploy, use this approach:<\/p>\n\n\n\n
                                                                                                              \n
                                                                                                            • For Compute + Networking<\/strong> deployments:<\/li>\n
                                                                                                            • Allow group to manage instances and VCN resources in the lab compartment.<\/li>\n
                                                                                                            • For Resource Manager<\/strong> stack deployments:<\/li>\n
                                                                                                            • Allow group to manage Resource Manager stacks\/jobs and the underlying resources.<\/li>\n<\/ul>\n\n\n\n
                                                                                                              \n
                                                                                                              Verify exact OCI IAM policy syntax in official docs before applying. Start here and navigate to IAM policy reference: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Identity\/home.htm<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                              Expected outcome:<\/strong> You can create resources in cmp-marketplace-lab<\/code> and can proceed to Marketplace without authorization errors.<\/p>\n\n\n\n
                                                                                                              Verification:<\/strong>\n– You can open Marketplace listings.\n– You can start a deployment workflow and select your compartment.<\/p>\n\n\n\n
                                                                                                              \n\n\n\n
                                                                                                              Step 3: Find a Free Marketplace listing appropriate for a lab<\/h3>\n\n\n\n
                                                                                                                \n
                                                                                                              1. Open the navigation menu \u2192 Marketplace<\/strong>.<\/li>\n
                                                                                                              2. In Marketplace:\n   – Filter for Free<\/strong> (if the filter exists in your UI), or search for keywords like:
                                                                                                                  \n
                                                                                                                • NGINX<\/code><\/li>\n
                                                                                                                • WordPress<\/code><\/li>\n
                                                                                                                • Open Source<\/code><\/li>\n
                                                                                                                • Free<\/code><\/li>\n
                                                                                                                • Terraform<\/code><\/li>\n<\/ul>\n<\/li>\n
                                                                                                                • Open a candidate listing and confirm:\n   – It supports your region<\/strong>\n   – It is Free<\/strong> or BYOL<\/strong> (avoid metered paid listings for a first lab)\n   – Deployment type:
                                                                                                                    \n
                                                                                                                  • Image<\/strong> (VM image) or<\/li>\n
                                                                                                                  • Stack<\/strong> (Resource Manager\/Terraform)<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                    Expected outcome:<\/strong> You have selected one free listing that you can deploy in your region.<\/p>\n\n\n\n
                                                                                                                    Verification checklist (on the listing page):<\/strong>\n– Pricing\/licensing: free\/BYOL confirmed\n– Supported regions: includes your region\n– Deployment instructions: clear enough for a lab\n– Network exposure: you understand what ports it will open (especially if it\u2019s a web app)<\/p>\n\n\n\n
                                                                                                                    \n\n\n\n
                                                                                                                    Step 4: Subscribe \/ accept terms for the listing<\/h3>\n\n\n\n
                                                                                                                    Most listings require you to accept terms before deployment.<\/p>\n\n\n\n
                                                                                                                      \n
                                                                                                                    1. On the listing page, click Get App<\/strong> \/ Subscribe<\/strong> \/ Accept Terms<\/strong> (button text varies).<\/li>\n
                                                                                                                    2. Read:\n   – License terms\n   – Support statement\n   – Any data collection notes (if stated)<\/li>\n
                                                                                                                    3. Accept terms and confirm the subscription.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                      Expected outcome:<\/strong> Your tenancy is subscribed to the listing and allowed to deploy it.<\/p>\n\n\n\n
                                                                                                                      Verification:<\/strong>\n– The listing shows as \u201cSubscribed\u201d or similar status.\n– If there is a \u201cMy Subscriptions\u201d section in Marketplace, confirm it appears there (UI varies).<\/p>\n\n\n\n
                                                                                                                      \n\n\n\n
                                                                                                                      Step 5 (Option A): Deploy using a Marketplace Stack (Resource Manager)<\/h3>\n\n\n\n
                                                                                                                      Choose this option if the listing deploys via a stack.<\/p>\n\n\n\n
                                                                                                                        \n
                                                                                                                      1. On the listing, choose Launch Stack<\/strong> (or equivalent).<\/li>\n
                                                                                                                      2. In the Create Stack<\/strong> page:\n   – Select Compartment<\/strong>: cmp-marketplace-lab<\/code>\n   – Set a stack name, e.g., stk-marketplace-lab<\/code>\n   – Review the Terraform version (if shown)<\/li>\n
                                                                                                                      3. On the Configure Variables<\/strong> page:\n   – Read every variable description carefully.\n   – Choose cost-minimizing options when available:
                                                                                                                          \n
                                                                                                                        • smallest shape supported (prefer Always Free eligible shapes if supported)<\/li>\n
                                                                                                                        • single instance<\/li>\n
                                                                                                                        • minimal storage sizes<\/li>\n
                                                                                                                        • Provide SSH public key if required (many stacks require it).<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                        • Create the stack.<\/li>\n
                                                                                                                        • Run Plan<\/strong> (if available) and review what will be created.<\/li>\n
                                                                                                                        • Run Apply<\/strong> to deploy.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                          Expected outcome:<\/strong> Resource Manager creates the required OCI resources (VCN\/Compute\/etc.).<\/p>\n\n\n\n
                                                                                                                          Verification:<\/strong>\n– In Resource Manager, the job status becomes Succeeded<\/strong>.\n– The outputs section (if provided) includes useful values like:\n  – public IP\n  – URL\n  – instance OCID<\/p>\n\n\n\n
                                                                                                                          \n
                                                                                                                          If the stack creates a load balancer and you didn\u2019t intend to pay for it, stop and destroy immediately.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                                          \n\n\n\n
                                                                                                                          Step 5 (Option B): Deploy using a Marketplace Image (Compute instance)<\/h3>\n\n\n\n
                                                                                                                          Choose this option if the listing is an image-based app.<\/p>\n\n\n\n
                                                                                                                            \n
                                                                                                                          1. From the listing, click Launch Instance<\/strong> (or follow the listing\u2019s deployment path to Compute).<\/li>\n
                                                                                                                          2. In Create Compute Instance<\/strong>:\n   – Name: vm-marketplace-lab<\/code>\n   – Compartment: cmp-marketplace-lab<\/code>\n   – Image: choose the Marketplace image\/version\n   – Shape: choose a small shape (prefer Always Free eligible if supported)<\/li>\n
                                                                                                                          3. Networking:\n   – Create a new VCN<\/strong> for lab (or select an existing lab VCN)\n   – Place instance in a public subnet<\/strong> if you need direct web access<\/li>\n
                                                                                                                          4. Add your SSH public key<\/strong><\/li>\n
                                                                                                                          5. Review \u201cAdvanced options\u201d only if the listing requires it.<\/li>\n
                                                                                                                          6. Click Create<\/strong>.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                            Expected outcome:<\/strong> A VM instance launches using the Marketplace image.<\/p>\n\n\n\n
                                                                                                                            Verification:<\/strong>\n– Instance state becomes Running<\/strong>\n– The instance has a public IP<\/strong> if you selected a public subnet and enabled public IP assignment<\/p>\n\n\n\n
                                                                                                                            \n\n\n\n
                                                                                                                            Step 6: Validate functionality<\/h3>\n\n\n\n
                                                                                                                            Validation depends on what you deployed. Use these common checks:<\/p>\n\n\n\n
                                                                                                                            A) Confirm OCI resources exist<\/h4>\n\n\n\n
                                                                                                                              \n
                                                                                                                            • In cmp-marketplace-lab<\/code>, check:<\/li>\n
                                                                                                                            • Compute<\/strong> \u2192 Instances<\/li>\n
                                                                                                                            • Networking<\/strong> \u2192 VCN, Subnets, Security Lists\/NSGs<\/li>\n
                                                                                                                            • Resource Manager<\/strong> \u2192 Stack and Job details (if stack-based)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                              B) If it\u2019s a web app, test HTTP\/HTTPS access<\/h4>\n\n\n\n
                                                                                                                                \n
                                                                                                                              1. Locate the public IP (instance public IP or load balancer IP).<\/li>\n
                                                                                                                              2. Test from your machine:<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                curl -I http:\/\/<PUBLIC_IP_OR_DNS_NAME>\n<\/code><\/pre>\n\n\n\n
                                                                                                                                If HTTPS is configured:<\/p>\n\n\n\n
                                                                                                                                curl -I https:\/\/<PUBLIC_IP_OR_DNS_NAME>\n<\/code><\/pre>\n\n\n\n
                                                                                                                                Expected outcome:<\/strong> You receive an HTTP response (200\/301\/302 are common). If you get timeout, check security rules.<\/p>\n\n\n\n
                                                                                                                                C) SSH access (if enabled)<\/h4>\n\n\n\n
                                                                                                                                ssh -i \/path\/to\/private_key opc@<PUBLIC_IP>\n<\/code><\/pre>\n\n\n\n
                                                                                                                                Usernames differ by image (Oracle Linux commonly uses opc<\/code>). Verify in listing docs<\/strong>.<\/p>\n\n\n\n
                                                                                                                                Expected outcome:<\/strong> You can log in and see the deployed software\/services.<\/p>\n\n\n\n
                                                                                                                                \n\n\n\n
                                                                                                                                Validation<\/h3>\n\n\n\n
                                                                                                                                Use this checklist:<\/p>\n\n\n\n
                                                                                                                                  \n
                                                                                                                                • [ ] You successfully subscribed\/accepted terms to the listing<\/li>\n
                                                                                                                                • [ ] Deployment completed (instance running or stack job succeeded)<\/li>\n
                                                                                                                                • [ ] You can reach the service (web page, API response, or SSH)<\/li>\n
                                                                                                                                • [ ] You identified all created resources (for cleanup and cost control)<\/li>\n
                                                                                                                                • [ ] You captured outputs (public IPs, URLs, credentials locations)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                  \n\n\n\n
                                                                                                                                  Troubleshooting<\/h3>\n\n\n\n
                                                                                                                                  1) \u201cNot authorized\u201d \/ \u201cForbidden\u201d when deploying<\/h4>\n\n\n\n
                                                                                                                                    \n
                                                                                                                                  • Cause:<\/strong> Missing IAM permissions in the target compartment.<\/li>\n
                                                                                                                                  • Fix:<\/strong> Ask admin to grant least-privilege policies for:<\/li>\n
                                                                                                                                  • compute instances<\/li>\n
                                                                                                                                  • vcn\/subnets\/security rules<\/li>\n
                                                                                                                                  • resource manager stacks\/jobs (if applicable)<\/li>\n
                                                                                                                                  • marketplace subscription actions (verify policy resource types in docs)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                    2) Listing not available in your region<\/h4>\n\n\n\n
                                                                                                                                      \n
                                                                                                                                    • Cause:<\/strong> Publisher restricts regions.<\/li>\n
                                                                                                                                    • Fix:<\/strong> Choose another listing, or deploy in a region where it is available (if your tenancy is subscribed to that region).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                      3) Stack apply fails (Terraform errors)<\/h4>\n\n\n\n
                                                                                                                                        \n
                                                                                                                                      • Cause:<\/strong> Quota limits, naming conflicts, unsupported shapes, missing variables.<\/li>\n
                                                                                                                                      • Fix:<\/strong><\/li>\n
                                                                                                                                      • Read the job logs carefully.<\/li>\n
                                                                                                                                      • Reduce size\/footprint.<\/li>\n
                                                                                                                                      • Ensure required variables are set (SSH key, compartment, network selections).<\/li>\n
                                                                                                                                      • Check service limits for compute\/public IP\/LB.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                        4) Can\u2019t access the web app (timeout)<\/h4>\n\n\n\n
                                                                                                                                          \n
                                                                                                                                        • Cause:<\/strong> Ingress rules not open, wrong subnet type, no public IP, NSG blocks traffic.<\/li>\n
                                                                                                                                        • Fix:<\/strong><\/li>\n
                                                                                                                                        • Confirm instance has a public IP (or use LB).<\/li>\n
                                                                                                                                        • Confirm Security List\/NSG allows inbound TCP 80\/443 from your IP.<\/li>\n
                                                                                                                                        • Confirm route table and internet gateway exist for the public subnet.<\/li>\n
                                                                                                                                        • Check OS firewall (iptables\/firewalld) on the instance.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                          5) SSH fails<\/h4>\n\n\n\n
                                                                                                                                            \n
                                                                                                                                          • Cause:<\/strong> Wrong username, blocked port 22, wrong key, no public IP.<\/li>\n
                                                                                                                                          • Fix:<\/strong><\/li>\n
                                                                                                                                          • Verify username in listing docs.<\/li>\n
                                                                                                                                          • Ensure inbound TCP 22 allowed from your IP.<\/li>\n
                                                                                                                                          • Confirm correct private key used and permissions (chmod 600<\/code>).<\/li>\n
                                                                                                                                          • Use OCI Console Instance Console Connection<\/strong> as a last resort (advanced).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                            \n\n\n\n
                                                                                                                                            Cleanup<\/h3>\n\n\n\n
                                                                                                                                            To avoid charges, delete everything created.<\/p>\n\n\n\n
                                                                                                                                            If deployed via Resource Manager stack<\/h4>\n\n\n\n
                                                                                                                                              \n
                                                                                                                                            1. Go to Resource Manager<\/strong> \u2192 Stacks \u2192 your stack.<\/li>\n
                                                                                                                                            2. Run Destroy<\/strong> (or \u201cTerminate\u201d\/\u201cDestroy job\u201d depending on UI).<\/li>\n
                                                                                                                                            3. Wait for job success.<\/li>\n
                                                                                                                                            4. Verify resources are gone in the compartment.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                              If deployed via Compute instance directly<\/h4>\n\n\n\n
                                                                                                                                                \n
                                                                                                                                              1. Compute<\/strong> \u2192 Instances \u2192 vm-marketplace-lab<\/code> \u2192 Terminate<\/strong>\n   – Choose Permanently delete<\/strong> boot volume if you do not need it.<\/li>\n
                                                                                                                                              2. Delete any additional block volumes created.<\/li>\n
                                                                                                                                              3. If you created a VCN only for the lab:\n   – Delete dependent resources (LB, gateways, route tables attachments) if any\n   – Delete subnets\n   – Delete VCN<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                Expected cleanup outcome:<\/strong> Compartment cmp-marketplace-lab<\/code> contains no running instances, load balancers, or unattached volumes.<\/p>\n\n\n\n
                                                                                                                                                \n\n\n\n
                                                                                                                                                11. Best Practices<\/h2>\n\n\n\n
                                                                                                                                                Architecture best practices<\/h3>\n\n\n\n
                                                                                                                                                  \n
                                                                                                                                                • Prefer stack-based deployments<\/strong> for repeatability and drift control (when well-authored).<\/li>\n
                                                                                                                                                • For production:<\/li>\n
                                                                                                                                                • Put workloads in private subnets<\/strong>.<\/li>\n
                                                                                                                                                • Use Load Balancer<\/strong> + WAF<\/strong> for public apps where appropriate.<\/li>\n
                                                                                                                                                • Use Bastion<\/strong> for admin access instead of public SSH.<\/li>\n
                                                                                                                                                • Design for failure:<\/li>\n
                                                                                                                                                • multi-instance tiers where needed<\/li>\n
                                                                                                                                                • backups and restore testing<\/li>\n
                                                                                                                                                • health checks and alarms<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                  IAM\/security best practices<\/h3>\n\n\n\n
                                                                                                                                                    \n
                                                                                                                                                  • Enforce least privilege<\/strong>:<\/li>\n
                                                                                                                                                  • Separate \u201cMarketplace subscription\u201d from \u201cdeployment execution\u201d roles.<\/li>\n
                                                                                                                                                  • Restrict who can deploy into production compartments.<\/li>\n
                                                                                                                                                  • Use dynamic groups + instance principals<\/strong> for OCI API access from instances (when applicable).<\/li>\n
                                                                                                                                                  • Require MFA<\/strong> and strong identity controls for human users.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                    Cost best practices<\/h3>\n\n\n\n
                                                                                                                                                      \n
                                                                                                                                                    • Treat Marketplace PoCs as ephemeral<\/strong>:<\/li>\n
                                                                                                                                                    • tag resources<\/li>\n
                                                                                                                                                    • set budget alerts<\/li>\n
                                                                                                                                                    • schedule teardown<\/li>\n
                                                                                                                                                    • Be cautious with stacks that create:<\/li>\n
                                                                                                                                                    • load balancers<\/li>\n
                                                                                                                                                    • multiple instances<\/li>\n
                                                                                                                                                    • large block volumes<\/li>\n
                                                                                                                                                    • Prefer Always Free eligible resources for training (verify current eligibility).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                      Performance best practices<\/h3>\n\n\n\n
                                                                                                                                                        \n
                                                                                                                                                      • Don\u2019t assume marketplace defaults are right for your workload.<\/li>\n
                                                                                                                                                      • Right-size shapes using monitoring data.<\/li>\n
                                                                                                                                                      • Use OCI Load Balancer and caching patterns where appropriate.<\/li>\n
                                                                                                                                                      • Validate storage performance tiers if the app is I\/O sensitive.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                        Reliability best practices<\/h3>\n\n\n\n
                                                                                                                                                          \n
                                                                                                                                                        • Avoid single points of failure for production.<\/li>\n
                                                                                                                                                        • Use multiple fault domains\/ADs where the region supports it.<\/li>\n
                                                                                                                                                        • Automate rebuilds (IaC) and document runbooks.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                          Operations best practices<\/h3>\n\n\n\n
                                                                                                                                                            \n
                                                                                                                                                          • Standardize:<\/li>\n
                                                                                                                                                          • patching process (OS and application)<\/li>\n
                                                                                                                                                          • log collection and retention<\/li>\n
                                                                                                                                                          • vulnerability scanning (where applicable)<\/li>\n
                                                                                                                                                          • Use alarms:<\/li>\n
                                                                                                                                                          • CPU\/memory\/disk (agent-based for memory\/disk)<\/li>\n
                                                                                                                                                          • instance down<\/li>\n
                                                                                                                                                          • LB unhealthy backends<\/li>\n
                                                                                                                                                          • Track ownership with tags and clear on-call rotations.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                            Governance\/tagging\/naming best practices<\/h3>\n\n\n\n
                                                                                                                                                              \n
                                                                                                                                                            • Tags to enforce:<\/li>\n
                                                                                                                                                            • Owner<\/code><\/li>\n
                                                                                                                                                            • Environment<\/code> (dev\/test\/prod)<\/li>\n
                                                                                                                                                            • CostCenter<\/code><\/li>\n
                                                                                                                                                            • DataSensitivity<\/code><\/li>\n
                                                                                                                                                            • Naming:<\/li>\n
                                                                                                                                                            • include app, environment, region, and tier (e.g., app1-prod-web-01<\/code>)<\/li>\n
                                                                                                                                                            • Maintain an internal \u201capproved listings\u201d register:<\/li>\n
                                                                                                                                                            • listing name\/version<\/li>\n
                                                                                                                                                            • publisher<\/li>\n
                                                                                                                                                            • security review date<\/li>\n
                                                                                                                                                            • support contact<\/li>\n
                                                                                                                                                            • allowed compartments<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                              \n\n\n\n
                                                                                                                                                              12. Security Considerations<\/h2>\n\n\n\n
                                                                                                                                                              Identity and access model<\/h3>\n\n\n\n
                                                                                                                                                                \n
                                                                                                                                                              • Access to Marketplace and deployment actions is governed by OCI IAM<\/strong>.<\/li>\n
                                                                                                                                                              • Apply compartment boundaries:<\/li>\n
                                                                                                                                                              • Only platform\/security teams can deploy into shared or prod compartments.<\/li>\n
                                                                                                                                                              • Developers deploy into dev\/test compartments only.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                Encryption<\/h3>\n\n\n\n
                                                                                                                                                                  \n
                                                                                                                                                                • OCI encrypts many storage services at rest by default (service-dependent).<\/li>\n
                                                                                                                                                                • For marketplace deployments:<\/li>\n
                                                                                                                                                                • Ensure block volumes and boot volumes meet your encryption requirements (default encryption is typical).<\/li>\n
                                                                                                                                                                • Use customer-managed keys (Vault) if policy requires (verify service support).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                  Network exposure<\/h3>\n\n\n\n
                                                                                                                                                                  Common risk: Marketplace listings that deploy a web UI\/admin interface directly to the public internet.\n– Prefer:\n  – private subnet deployment\n  – access via Bastion\/VPN\/FastConnect\n  – restrict ingress to corporate IPs\n– Use NSGs for tighter, instance-level control.\n– Avoid \u201c0.0.0.0\/0\u201d on admin ports.<\/p>\n\n\n\n
                                                                                                                                                                  Secrets handling<\/h3>\n\n\n\n
                                                                                                                                                                    \n
                                                                                                                                                                  • Do not store secrets in:<\/li>\n
                                                                                                                                                                  • instance user-data<\/li>\n
                                                                                                                                                                  • Terraform variables in plaintext<\/li>\n
                                                                                                                                                                  • images<\/li>\n
                                                                                                                                                                  • Prefer OCI Vault<\/strong> for secrets; integrate apps to fetch secrets at runtime when possible.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                    Audit\/logging<\/h3>\n\n\n\n
                                                                                                                                                                      \n
                                                                                                                                                                    • Enable and review OCI Audit<\/strong> events for:<\/li>\n
                                                                                                                                                                    • subscription acceptance<\/li>\n
                                                                                                                                                                    • instance creation\/termination<\/li>\n
                                                                                                                                                                    • network changes<\/li>\n
                                                                                                                                                                    • Centralize logs:<\/li>\n
                                                                                                                                                                    • OS logs via agent<\/li>\n
                                                                                                                                                                    • application logs as needed<\/li>\n
                                                                                                                                                                    • Ensure retention meets compliance.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                      Compliance considerations<\/h3>\n\n\n\n
                                                                                                                                                                      Marketplace does not automatically make a deployment compliant.\n– You still need:\n  – asset inventory\n  – vulnerability management\n  – patch SLAs\n  – access reviews\n  – data residency checks (region)\n– If the listing includes telemetry\/phone-home behavior, review publisher docs and legal terms.<\/p>\n\n\n\n
                                                                                                                                                                      Common security mistakes<\/h3>\n\n\n\n
                                                                                                                                                                        \n
                                                                                                                                                                      • Deploying production services into a public subnet with open ingress.<\/li>\n
                                                                                                                                                                      • Using default passwords from docs and never rotating.<\/li>\n
                                                                                                                                                                      • Over-permissive IAM policies for Resource Manager and users.<\/li>\n
                                                                                                                                                                      • Not understanding responsibility split: infrastructure vs software support.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                        Secure deployment recommendations<\/h3>\n\n\n\n
                                                                                                                                                                          \n
                                                                                                                                                                        • Run a lightweight security review before production:<\/li>\n
                                                                                                                                                                        • ports exposed<\/li>\n
                                                                                                                                                                        • IAM access paths<\/li>\n
                                                                                                                                                                        • required OS hardening steps<\/li>\n
                                                                                                                                                                        • backup strategy<\/li>\n
                                                                                                                                                                        • Use a staging environment to validate:<\/li>\n
                                                                                                                                                                        • upgrades<\/li>\n
                                                                                                                                                                        • scaling behavior<\/li>\n
                                                                                                                                                                        • failover behavior<\/li>\n
                                                                                                                                                                        • Keep an exit plan: how to migrate off the marketplace listing if needed.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                          \n\n\n\n
                                                                                                                                                                          13. Limitations and Gotchas<\/h2>\n\n\n\n
                                                                                                                                                                            \n
                                                                                                                                                                          • Listing availability varies by region<\/strong>: you may not find the same listing everywhere.<\/li>\n
                                                                                                                                                                          • Publisher quality varies<\/strong>:<\/li>\n
                                                                                                                                                                          • documentation can be incomplete<\/li>\n
                                                                                                                                                                          • upgrade procedures may be unclear<\/li>\n
                                                                                                                                                                          • Stacks may create expensive resources<\/strong> (especially load balancers and large storage) without obvious warnings\u2014review the plan carefully.<\/li>\n
                                                                                                                                                                          • Support boundaries<\/strong> can be confusing:<\/li>\n
                                                                                                                                                                          • Oracle supports OCI infrastructure<\/li>\n
                                                                                                                                                                          • publisher supports the software (often)<\/li>\n
                                                                                                                                                                          • you support integration and operations unless contracted otherwise<\/li>\n
                                                                                                                                                                          • IAM policy complexity<\/strong>: deploying stacks often needs broad permissions; constrain by compartment and separate duties.<\/li>\n
                                                                                                                                                                          • Quotas\/service limits<\/strong>: PoC failures are frequently caused by public IP limits, instance limits, or shape availability.<\/li>\n
                                                                                                                                                                          • Image update cadence<\/strong>: a marketplace image may lag behind security patches\u2014validate patch status.<\/li>\n
                                                                                                                                                                          • Network assumptions<\/strong>: stacks may assume:<\/li>\n
                                                                                                                                                                          • public subnet access<\/li>\n
                                                                                                                                                                          • open ports<\/li>\n
                                                                                                                                                                          • specific CIDRs<\/li>\n
                                                                                                                                                                          • Data egress surprises<\/strong>: internet-facing apps can generate meaningful egress costs.<\/li>\n
                                                                                                                                                                          • Migration challenges<\/strong>:<\/li>\n
                                                                                                                                                                          • moving from a marketplace single VM to an HA architecture may require re-platforming<\/li>\n
                                                                                                                                                                          • BYOL licensing portability may require vendor confirmation<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                            \n\n\n\n
                                                                                                                                                                            14. Comparison with Alternatives<\/h2>\n\n\n\n
                                                                                                                                                                            Marketplace Guide is a \u201csolution acquisition + deployment accelerator.\u201d Alternatives include other cloud marketplaces, OCI-native building blocks, and self-managed internal catalogs.<\/p>\n\n\n\n
                                                                                                                                                                            \n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                            Option<\/th>\nBest For<\/th>\nStrengths<\/th>\nWeaknesses<\/th>\nWhen to Choose<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                            Oracle Cloud Marketplace (Marketplace Guide)<\/strong><\/td>\nDeploying partner\/Oracle solutions on OCI quickly<\/td>\nIntegrated with OCI, listing-based procurement, images\/stacks accelerate deployment<\/td>\nListing availability varies by region; publisher quality varies; licensing can be complex<\/td>\nYou want fast, governed deployments on Oracle Cloud<\/td>\n<\/tr>\n
                                                                                                                                                                            OCI Resource Manager (without Marketplace)<\/strong><\/td>\nYour own Terraform modules\/stacks<\/td>\nFull control, internal standards, repeatable IaC<\/td>\nYou must author\/maintain modules and docs<\/td>\nYou already have mature IaC and want a paved road without third-party packaging<\/td>\n<\/tr>\n
                                                                                                                                                                            OCI Custom Images \/ Golden Images<\/strong><\/td>\nStandardized VM baselines<\/td>\nStrong internal control, consistent patching\/hardening<\/td>\nRequires image pipeline and maintenance<\/td>\nYou must meet strict compliance and want full control<\/td>\n<\/tr>\n
                                                                                                                                                                            AWS Marketplace<\/strong><\/td>\nSimilar needs on AWS<\/td>\nLarge ecosystem; mature procurement patterns<\/td>\nNot OCI; different IAM\/network model<\/td>\nYour workloads primarily run on AWS<\/td>\n<\/tr>\n
                                                                                                                                                                            Azure Marketplace<\/strong><\/td>\nSimilar needs on Azure<\/td>\nStrong enterprise procurement integrations<\/td>\nNot OCI; different deployment models<\/td>\nYou\u2019re standardized on Azure<\/td>\n<\/tr>\n
                                                                                                                                                                            Google Cloud Marketplace<\/strong><\/td>\nSimilar needs on GCP<\/td>\nIntegrated deployments and billing options<\/td>\nNot OCI; ecosystem differs<\/td>\nYou\u2019re standardized on GCP<\/td>\n<\/tr>\n
                                                                                                                                                                            Self-managed internal catalog (e.g., Backstage + Terraform modules)<\/strong><\/td>\nLarge enterprises with strict governance<\/td>\nMaximum governance and standardization<\/td>\nHigher engineering effort; slower onboarding<\/td>\nYou need deep control and internal approval workflows<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                            \n\n\n\n
                                                                                                                                                                            15. Real-World Example<\/h2>\n\n\n\n
                                                                                                                                                                            Enterprise example: Centralized security inspection using a partner appliance listing<\/h3>\n\n\n\n
                                                                                                                                                                              \n
                                                                                                                                                                            • Problem:<\/strong> A regulated enterprise needs standardized inbound\/outbound traffic inspection and segmentation across multiple application teams on Oracle Cloud.<\/li>\n
                                                                                                                                                                            • Proposed architecture:<\/strong><\/li>\n
                                                                                                                                                                            • Use Marketplace Guide to select an approved partner security appliance listing.<\/li>\n
                                                                                                                                                                            • Deploy via stack into a Shared Services<\/strong> compartment.<\/li>\n
                                                                                                                                                                            • Hub-and-spoke VCN pattern:
                                                                                                                                                                                \n
                                                                                                                                                                              • Hub VCN hosts the inspection layer<\/li>\n
                                                                                                                                                                              • Spoke VCNs host applications<\/li>\n
                                                                                                                                                                              • Routing directs traffic through the inspection tier<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                              • Integrate with:
                                                                                                                                                                                  \n
                                                                                                                                                                                • OCI Audit for governance<\/li>\n
                                                                                                                                                                                • Central Logging for security logs<\/li>\n
                                                                                                                                                                                • Vault for secrets (where supported)<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                                • Why this service was chosen:<\/strong><\/li>\n
                                                                                                                                                                                • Faster deployment than manual image building.<\/li>\n
                                                                                                                                                                                • Easier standardization: one approved listing\/version and repeatable deployment.<\/li>\n
                                                                                                                                                                                • Procurement alignment via listing licensing terms.<\/li>\n
                                                                                                                                                                                • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                                                                • Reduced time to deploy inspection controls.<\/li>\n
                                                                                                                                                                                • Consistent security posture across teams.<\/li>\n
                                                                                                                                                                                • Clear responsibility split between OCI operations and vendor appliance support.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                  Startup\/small-team example: Quick deployment of a free web stack for a pilot<\/h3>\n\n\n\n
                                                                                                                                                                                    \n
                                                                                                                                                                                  • Problem:<\/strong> A startup needs a working demo environment in Oracle Cloud for a customer pilot, but doesn\u2019t have time to build everything from scratch.<\/li>\n
                                                                                                                                                                                  • Proposed architecture:<\/strong><\/li>\n
                                                                                                                                                                                  • Use Marketplace Guide to deploy a free\/open-source app stack (image or Resource Manager stack).<\/li>\n
                                                                                                                                                                                  • Deploy in a single compartment with strict tagging and budget alerts.<\/li>\n
                                                                                                                                                                                  • Public endpoint with restricted admin access (Bastion or IP allowlist).<\/li>\n
                                                                                                                                                                                  • Why this service was chosen:<\/strong><\/li>\n
                                                                                                                                                                                  • Rapid deployment and minimal setup time.<\/li>\n
                                                                                                                                                                                  • Lower operational overhead for a short-lived pilot.<\/li>\n
                                                                                                                                                                                  • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                                                                  • A demo environment available in hours rather than days.<\/li>\n
                                                                                                                                                                                  • Clear teardown path to avoid ongoing costs.<\/li>\n
                                                                                                                                                                                  • A starting point to evolve into a more robust architecture if the pilot succeeds.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    16. FAQ<\/h2>\n\n\n\n
                                                                                                                                                                                    1) Is Marketplace Guide a separate Oracle Cloud service?<\/strong>\nMarketplace Guide is best understood as guidance for using Oracle Cloud Marketplace<\/strong> rather than a distinct billable service. Verify naming in the official Marketplace docs: https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Marketplace\/home.htm<\/p>\n\n\n\n
                                                                                                                                                                                    2) Do Marketplace listings run \u201cinside\u201d Marketplace?<\/strong>\nNo. Marketplace is a catalog\/procurement layer. The actual software runs on OCI services (Compute, VCN, Resource Manager, etc.).<\/p>\n\n\n\n
                                                                                                                                                                                    3) Do I always need to \u201csubscribe\u201d before deploying?<\/strong>\nOften yes\u2014especially for licensed or partner solutions. Some free items may still require terms acceptance.<\/p>\n\n\n\n
                                                                                                                                                                                    4) Can I deploy Marketplace solutions into a private subnet only?<\/strong>\nUsually yes, but it depends on the listing\/stack. Review the architecture and variables. Some stacks assume public access unless you modify them.<\/p>\n\n\n\n
                                                                                                                                                                                    5) Who supports a Marketplace solution? Oracle or the publisher?<\/strong>\nUsually the publisher supports the software<\/strong>, and Oracle supports the OCI infrastructure<\/strong>. The listing should state the support model\u2014confirm before production.<\/p>\n\n\n\n
                                                                                                                                                                                    6) How do I avoid surprise costs?<\/strong>\nUse tags, budgets, and review the stack plan. Avoid stacks that create load balancers or multiple instances during PoC unless required.<\/p>\n\n\n\n
                                                                                                                                                                                    7) Are Marketplace images automatically patched?<\/strong>\nNot necessarily. After deployment, you typically own OS and application patching unless the publisher provides an automated update mechanism.<\/p>\n\n\n\n
                                                                                                                                                                                    8) Can I use OCI Always Free with Marketplace listings?<\/strong>\nSometimes\u2014if the listing supports Always Free eligible shapes and minimal extra services. Always Free eligibility changes over time; verify current requirements.<\/p>\n\n\n\n
                                                                                                                                                                                    9) Can I automate Marketplace deployments?<\/strong>\nCommonly, yes indirectly:\n– If the listing provides a Resource Manager stack, you can automate stack jobs.\n– For image-based deployments, you can automate instance creation using OCI APIs\/CLI once you have the right image and subscription terms accepted. Verify capabilities in official docs and your tenancy.<\/p>\n\n\n\n
                                                                                                                                                                                    10) Can I restrict which Marketplace listings teams can use?<\/strong>\nYou can restrict who can deploy<\/strong> and where<\/strong> via IAM compartments and policies. Catalog-level allow\/deny controls may be limited\u2014verify current governance features in official docs.<\/p>\n\n\n\n
                                                                                                                                                                                    11) What\u2019s the safest way to evaluate a new listing?<\/strong>\nDeploy into an isolated compartment and VCN, restrict ingress, and monitor network egress. Treat it like untrusted software until reviewed.<\/p>\n\n\n\n
                                                                                                                                                                                    12) Can Marketplace create IAM policies automatically via stacks?<\/strong>\nSome stacks can create IAM resources if permitted, but this is high risk. Prefer pre-created IAM policies with least privilege and avoid stacks that require tenancy-wide IAM permissions unless reviewed.<\/p>\n\n\n\n
                                                                                                                                                                                    13) How do I handle secrets created by a stack (passwords\/keys)?<\/strong>\nPrefer stacks that integrate with Vault or prompt you to supply secrets securely. If the stack outputs secrets in plaintext, treat outputs as sensitive and rotate immediately.<\/p>\n\n\n\n
                                                                                                                                                                                    14) What happens if a listing is removed or deprecated?<\/strong>\nYou can typically keep running deployed resources, but you may lose easy redeploy\/upgrade paths. Pin versions and maintain your own backup plan.<\/p>\n\n\n\n
                                                                                                                                                                                    15) Is Oracle Cloud Marketplace the same as AWS\/Azure marketplaces?<\/strong>\nConceptually similar (catalog + deployment + billing), but implementation, governance model, and listing availability differ.<\/p>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    17. Top Online Resources to Learn Marketplace Guide<\/h2>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                                                                    Resource Type<\/th>\nName<\/th>\nWhy It Is Useful<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                                                                    Official documentation<\/td>\nOracle Cloud Marketplace docs<\/td>\nPrimary reference for Marketplace workflows and concepts. https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Marketplace\/home.htm<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official documentation<\/td>\nOCI Identity and Access Management docs<\/td>\nRequired to implement least-privilege access for Marketplace deployments. https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/Identity\/home.htm<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official documentation<\/td>\nOCI Resource Manager docs<\/td>\nEssential if you deploy Marketplace stacks (Terraform). https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/ResourceManager\/home.htm<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official pricing<\/td>\nOracle Cloud Pricing<\/td>\nUnderstand OCI resource costs that Marketplace deployments create. https:\/\/www.oracle.com\/cloud\/pricing\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official pricing<\/td>\nOCI Price List<\/td>\nDetailed SKU pricing reference (region\/service dependent). https:\/\/www.oracle.com\/cloud\/price-list\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official tool<\/td>\nOCI Cost Estimator<\/td>\nModel costs for compute\/LB\/storage created by listings (verify current estimator availability). https:\/\/www.oracle.com\/cloud\/cost-estimator.html<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official architecture<\/td>\nOracle Cloud Architecture Center<\/td>\nReference architectures relevant to apps you may deploy from Marketplace. https:\/\/www.oracle.com\/cloud\/architecture-center\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official solutions<\/td>\nOracle Solutions on docs.oracle.com<\/td>\nStep-by-step solution guides (some align with Marketplace-style deployments). https:\/\/docs.oracle.com\/en\/solutions\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official training<\/td>\nOracle Cloud \u201cLearn\u201d content<\/td>\nTutorials and labs across OCI services you\u2019ll use with Marketplace. https:\/\/docs.oracle.com\/en\/learn\/<\/td>\n<\/tr>\n
                                                                                                                                                                                    Official CLI docs<\/td>\nOCI CLI documentation<\/td>\nHelpful for verification and cleanup automation. https:\/\/docs.oracle.com\/en-us\/iaas\/Content\/API\/SDKDocs\/cliinstall.htm<\/td>\n<\/tr>\n
                                                                                                                                                                                    GitHub (Oracle)<\/td>\noracle\/terraform-provider-oci<\/td>\nUseful background for Terraform\/Resource Manager behavior. https:\/\/github.com\/oracle\/terraform-provider-oci<\/td>\n<\/tr>\n
                                                                                                                                                                                    GitHub (Oracle)<\/td>\noracle-quickstart repositories (verify current org\/repo)<\/td>\nMany OCI reference deployments and stacks live in Oracle GitHub orgs; validate relevance to your listing. https:\/\/github.com\/oracle<\/td>\n<\/tr>\n
                                                                                                                                                                                    Community (reputable)<\/td>\nOCI blog and architecture posts (verify)<\/td>\nPractical patterns and announcements; cross-check with docs. https:\/\/blogs.oracle.com\/cloud-infrastructure\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                    18. Training and Certification Providers<\/h2>\n\n\n\n
                                                                                                                                                                                    The following training providers may offer Oracle Cloud and Marketplace-related learning. Verify course outlines, instructors, and recency directly on their websites.<\/p>\n\n\n\n
                                                                                                                                                                                      \n
                                                                                                                                                                                    1. \n
                                                                                                                                                                                      DevOpsSchool.com<\/strong>\n   – Suitable audience:<\/strong> DevOps engineers, SREs, cloud engineers, beginners to intermediate\n   – Likely learning focus:<\/strong> DevOps practices, cloud operations fundamentals, automation concepts that complement OCI Marketplace deployments\n   – Mode:<\/strong> Check website\n   – Website:<\/strong> https:\/\/www.devopsschool.com\/<\/p>\n<\/li>\n
                                                                                                                                                                                    2. \n
                                                                                                                                                                                      ScmGalaxy.com<\/strong>\n   – Suitable audience:<\/strong> DevOps practitioners, build\/release engineers, students\n   – Likely learning focus:<\/strong> SCM\/CI\/CD fundamentals that pair with deploying tooling from Marketplace\n   – Mode:<\/strong> Check website\n   – Website:<\/strong> https:\/\/www.scmgalaxy.com\/<\/p>\n<\/li>\n
                                                                                                                                                                                    3. \n
                                                                                                                                                                                      CLoudOpsNow.in<\/strong>\n   – Suitable audience:<\/strong> Cloud operations teams, platform teams\n   – Likely learning focus:<\/strong> CloudOps and operational practices relevant after deploying Marketplace solutions\n   – Mode:<\/strong> Check website\n   – Website:<\/strong> https:\/\/cloudopsnow.in\/<\/p>\n<\/li>\n
                                                                                                                                                                                    4. \n
                                                                                                                                                                                      SreSchool.com<\/strong>\n   – Suitable audience:<\/strong> SREs, operations engineers, platform engineers\n   – Likely learning focus:<\/strong> Reliability engineering practices (monitoring, incident response) for Marketplace-deployed workloads\n   – Mode:<\/strong> Check website\n   – Website:<\/strong> https:\/\/sreschool.com\/<\/p>\n<\/li>\n
                                                                                                                                                                                    5. \n
                                                                                                                                                                                      AiOpsSchool.com<\/strong>\n   – Suitable audience:<\/strong> Operations teams exploring AIOps, monitoring\/observability practitioners\n   – Likely learning focus:<\/strong> Observability and automation practices that apply to managing Marketplace solutions\n   – Mode:<\/strong> Check website\n   – Website:<\/strong> https:\/\/aiopsschool.com\/<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                      \n\n\n\n
                                                                                                                                                                                      19. Top Trainers<\/h2>\n\n\n\n
                                                                                                                                                                                      These sites appear to provide trainer information, training services, or related resources. Verify specialization and offerings directly.<\/p>\n\n\n\n
                                                                                                                                                                                        \n
                                                                                                                                                                                      1. \n
                                                                                                                                                                                        RajeshKumar.xyz<\/strong>\n   – Likely specialization:<\/strong> Cloud\/DevOps training and guidance (verify on site)\n   – Suitable audience:<\/strong> Beginners to intermediate practitioners\n   – Website:<\/strong> https:\/\/rajeshkumar.xyz\/<\/p>\n<\/li>\n
                                                                                                                                                                                      2. \n
                                                                                                                                                                                        devopstrainer.in<\/strong>\n   – Likely specialization:<\/strong> DevOps training, CI\/CD, automation concepts\n   – Suitable audience:<\/strong> DevOps engineers, students, working professionals\n   – Website:<\/strong> https:\/\/devopstrainer.in\/<\/p>\n<\/li>\n
                                                                                                                                                                                      3. \n
                                                                                                                                                                                        devopsfreelancer.com<\/strong>\n   – Likely specialization:<\/strong> Freelance DevOps support\/training resources (verify on site)\n   – Suitable audience:<\/strong> Teams needing short-term guidance or hands-on help\n   – Website:<\/strong> https:\/\/devopsfreelancer.com\/<\/p>\n<\/li>\n
                                                                                                                                                                                      4. \n
                                                                                                                                                                                        devopssupport.in<\/strong>\n   – Likely specialization:<\/strong> DevOps support services and possibly training (verify on site)\n   – Suitable audience:<\/strong> Operations\/DevOps teams needing implementation support\n   – Website:<\/strong> https:\/\/devopssupport.in\/<\/p>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                        \n\n\n\n
                                                                                                                                                                                        20. Top Consulting Companies<\/h2>\n\n\n\n
                                                                                                                                                                                        These companies may offer consulting services related to cloud\/DevOps and could help with Oracle Cloud Marketplace deployments. Verify capabilities, references, and scope directly.<\/p>\n\n\n\n
                                                                                                                                                                                          \n
                                                                                                                                                                                        1. \n
                                                                                                                                                                                          cotocus.com<\/strong>\n   – Likely service area:<\/strong> Cloud and DevOps consulting (verify on site)\n   – Where they may help:<\/strong> Architecture reviews, cloud migrations, operational readiness for Marketplace-based deployments\n   – Consulting use case examples:<\/strong> <\/p>\n
                                                                                                                                                                                            \n
                                                                                                                                                                                          • Reviewing a Marketplace stack for security and cost risks before production  <\/li>\n
                                                                                                                                                                                          • Designing VCN\/subnet patterns for Marketplace-deployed tools  <\/li>\n
                                                                                                                                                                                          • Website:<\/strong> https:\/\/cotocus.com\/<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                                          • \n
                                                                                                                                                                                            DevOpsSchool.com<\/strong>\n   – Likely service area:<\/strong> DevOps consulting and training services (verify on site)\n   – Where they may help:<\/strong> CI\/CD, automation, operational best practices for workloads deployed from Marketplace\n   – Consulting use case examples:<\/strong> <\/p>\n
                                                                                                                                                                                              \n
                                                                                                                                                                                            • Implementing monitoring and incident response for Marketplace-deployed apps  <\/li>\n
                                                                                                                                                                                            • Standardizing deployment pipelines around Terraform\/Resource Manager  <\/li>\n
                                                                                                                                                                                            • Website:<\/strong> https:\/\/www.devopsschool.com\/<\/li>\n<\/ul>\n<\/li>\n
                                                                                                                                                                                            • \n
                                                                                                                                                                                              DEVOPSCONSULTING.IN<\/strong>\n   – Likely service area:<\/strong> DevOps consulting (verify on site)\n   – Where they may help:<\/strong> Platform enablement, automation, governance patterns for cloud deployments\n   – Consulting use case examples:<\/strong> <\/p>\n
                                                                                                                                                                                                \n
                                                                                                                                                                                              • Defining compartment\/IAM\/tagging standards for Marketplace deployments  <\/li>\n
                                                                                                                                                                                              • Cost optimization assessment for stacks that deploy multiple OCI services  <\/li>\n
                                                                                                                                                                                              • Website:<\/strong> https:\/\/devopsconsulting.in\/<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                                                                                \n\n\n\n
                                                                                                                                                                                                21. Career and Learning Roadmap<\/h2>\n\n\n\n
                                                                                                                                                                                                What to learn before Marketplace Guide<\/h3>\n\n\n\n
                                                                                                                                                                                                To use Marketplace Guide effectively on Oracle Cloud, learn these OCI basics first:\n– OCI tenancy structure: regions, compartments, VCNs<\/strong>\n– IAM fundamentals: users, groups, policies, dynamic groups<\/strong>\n– Compute basics: instances, shapes, boot volumes, SSH access\n– Networking: subnets, route tables, internet gateway, NAT gateway, NSGs\/security lists\n– Cost basics: budgets, tagging, service limits<\/p>\n\n\n\n
                                                                                                                                                                                                What to learn after Marketplace Guide<\/h3>\n\n\n\n
                                                                                                                                                                                                To run Marketplace deployments professionally:\n– OCI Resource Manager \/ Terraform<\/strong>: plans, applies, state, drift, modules\n– Observability:\n  – OCI Monitoring\/Alarms\n  – OCI Logging and log analytics approaches (service availability varies)\n– Security:\n  – Vault and KMS\n  – Vulnerability scanning (service availability varies; verify)\n  – WAF and secure ingress patterns\n– Reliability:\n  – HA patterns for OCI (multi-AD where available, multi-FD)\n  – Backup and restore testing\n– FinOps:\n  – cost allocation with tags\n  – usage reporting and chargeback\/showback<\/p>\n\n\n\n
                                                                                                                                                                                                Job roles that use it<\/h3>\n\n\n\n
                                                                                                                                                                                                  \n
                                                                                                                                                                                                • Cloud engineer \/ OCI engineer<\/li>\n
                                                                                                                                                                                                • Solutions architect<\/li>\n
                                                                                                                                                                                                • DevOps engineer<\/li>\n
                                                                                                                                                                                                • SRE \/ Platform engineer<\/li>\n
                                                                                                                                                                                                • Security engineer (cloud security, network security)<\/li>\n
                                                                                                                                                                                                • FinOps analyst (for governance and spend control)<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                  Certification path (if available)<\/h3>\n\n\n\n
                                                                                                                                                                                                  Oracle offers OCI certifications (associate\/professional tracks). Marketplace-specific certification is not commonly separated; instead:\n– Start with foundational OCI certs (verify current certification names and tracks on Oracle University).\n– Add architecture and security certifications as your responsibilities grow.\nVerify current OCI certifications here: https:\/\/education.oracle.com\/<\/p>\n\n\n\n
                                                                                                                                                                                                  Project ideas for practice<\/h3>\n\n\n\n
                                                                                                                                                                                                    \n
                                                                                                                                                                                                  • Build an \u201capproved Marketplace listings\u201d internal page with:<\/li>\n
                                                                                                                                                                                                  • required compartments<\/li>\n
                                                                                                                                                                                                  • required tags<\/li>\n
                                                                                                                                                                                                  • baseline network architecture<\/li>\n
                                                                                                                                                                                                  • Create a reusable Terraform \u201clanding zone\u201d that Marketplace stacks must deploy into (shared VCN patterns).<\/li>\n
                                                                                                                                                                                                  • Implement cost guardrails:<\/li>\n
                                                                                                                                                                                                  • budgets<\/li>\n
                                                                                                                                                                                                  • quota policies (where applicable)<\/li>\n
                                                                                                                                                                                                  • automated cleanup for lab compartments<\/li>\n
                                                                                                                                                                                                  • Run a security review checklist on a Marketplace image:<\/li>\n
                                                                                                                                                                                                  • open ports<\/li>\n
                                                                                                                                                                                                  • default users<\/li>\n
                                                                                                                                                                                                  • patch status<\/li>\n
                                                                                                                                                                                                  • logging configuration<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                    \n\n\n\n
                                                                                                                                                                                                    22. Glossary<\/h2>\n\n\n\n
                                                                                                                                                                                                      \n
                                                                                                                                                                                                    • OCI (Oracle Cloud Infrastructure):<\/strong> Oracle Cloud\u2019s IaaS\/PaaS platform used to run compute, networking, storage, and managed services.<\/li>\n
                                                                                                                                                                                                    • Marketplace listing:<\/strong> A catalog entry describing a solution (image\/stack\/software) available to deploy or subscribe to.<\/li>\n
                                                                                                                                                                                                    • Subscription \/ terms acceptance:<\/strong> The action of accepting a listing\u2019s license terms so it can be deployed in a tenancy.<\/li>\n
                                                                                                                                                                                                    • Compartment:<\/strong> An OCI logical container for organizing and isolating resources with IAM policies.<\/li>\n
                                                                                                                                                                                                    • VCN (Virtual Cloud Network):<\/strong> OCI virtual network containing subnets, route tables, gateways, and security rules.<\/li>\n
                                                                                                                                                                                                    • NSG (Network Security Group):<\/strong> Security rules applied to groups of VNICs for finer-grained network control.<\/li>\n
                                                                                                                                                                                                    • Security list:<\/strong> Subnet-level ingress\/egress rules (older model; still used).<\/li>\n
                                                                                                                                                                                                    • Resource Manager:<\/strong> OCI managed Terraform service for provisioning infrastructure using stacks and jobs.<\/li>\n
                                                                                                                                                                                                    • Stack:<\/strong> A Terraform configuration packaged for Resource Manager deployment.<\/li>\n
                                                                                                                                                                                                    • Plan\/Apply\/Destroy:<\/strong> Terraform lifecycle actions: preview changes, create\/update resources, and delete resources.<\/li>\n
                                                                                                                                                                                                    • BYOL:<\/strong> Bring Your Own License\u2014use your existing software license with a Marketplace deployment.<\/li>\n
                                                                                                                                                                                                    • Metered billing:<\/strong> Consumption-based charges for software licensing integrated into billing (availability depends on listing).<\/li>\n
                                                                                                                                                                                                    • Always Free:<\/strong> OCI free tier resources that can be used indefinitely within limits (verify current eligibility).<\/li>\n
                                                                                                                                                                                                    • Egress:<\/strong> Outbound network traffic from OCI to the internet or other regions; often a cost driver.<\/li>\n
                                                                                                                                                                                                    • Golden image:<\/strong> A standardized, hardened VM image maintained internally by an organization.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                                                                                      \n\n\n\n
                                                                                                                                                                                                      23. Summary<\/h2>\n\n\n\n
                                                                                                                                                                                                      Oracle Cloud Marketplace Guide<\/strong> (Oracle Cloud Marketplace) is your entry point for discovering, subscribing to, and deploying software solutions on Oracle Cloud<\/strong> using prebuilt images and Terraform-based stacks. It matters because it shortens delivery timelines, supports standardization, and connects solution procurement with practical deployment workflows.<\/p>\n\n\n\n
                                                                                                                                                                                                      Cost and security outcomes depend less on the Marketplace catalog itself and more on what you deploy: compute shapes, load balancers, storage, network egress, and any publisher licensing. Use compartments, least-privilege IAM, strict network controls, tagging, and budget alerts to keep Marketplace deployments safe and predictable.<\/p>\n\n\n\n
                                                                                                                                                                                                      Use Marketplace Guide when you want a repeatable, supported starting point and you can align licensing\/support with your operational model. Avoid it when strict compliance demands fully internal builds or when the listing\u2019s architecture doesn\u2019t fit production requirements.<\/p>\n\n\n\n
                                                                                                                                                                                                      Next step: pick one free listing in your region, deploy it into a lab compartment using the tutorial above, then practice hardening it\u2014private subnets, Bastion access, Vault for secrets, alarms, and a clean destroy workflow.<\/p>\n","protected":false},"excerpt":{"rendered":"
                                                                                                                                                                                                      Marketplace<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[71,62],"tags":[],"class_list":["post-928","post","type-post","status-publish","format-standard","hentry","category-marketplace","category-oracle-cloud"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/928","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/comments?post=928"}],"version-history":[{"count":0,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/928\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/media?parent=928"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/categories?post=928"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/tags?post=928"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}