The definitive Oracle compliance reference for buyers — virtualisation rules, approved hard partitioning, VMware exposure, multi-tenancy, options usage scanning, Java SE deployment counting, and audit-defence positioning. Written by former Oracle LMS auditors who now defend the buyer.
Oracle compliance is the state of having every deployed Oracle product covered by a valid licence with all options, metric rules and partitioning rules correctly applied — and being able to prove it under an LMS audit. The key word is prove. Compliance you cannot evidence is, in audit context, indistinguishable from non-compliance.
Oracle's licensing model is unusually unforgiving compared to other enterprise software vendors. The rules are detailed, the contractual definitions are tight, and Oracle's LMS team is structured as a margin-generating function inside Oracle Field Operations. Compliance is therefore both an architectural discipline and an evidentiary discipline. The buyer's job is to design deployments that fit the rules cleanly and maintain the documentation that lets them demonstrate the fit.
The five compliance pressure points across virtually every Oracle estate are virtualisation, options usage, partitioning, Java SE deployment, and DR/standby. The rest of this guide covers each in operational detail.
Oracle LMS audit outcomes are settled, not adjudicated. The audit findings Oracle delivers are an opening commercial position, not a fact. Every claim is challengeable — Core Factor calculations, option-usage interpretations, partitioning evidence, NUP counting, Java SE applicability. The audit defence playbook is described in our Oracle audit master guide; this compliance guide covers the preventive discipline that makes any audit defence stronger.
Oracle's published position on virtualisation is straightforward: an Oracle product is licensed on every processor where the product is "installed and/or running". On a physical host with no virtualisation, that's simple. On a virtualised environment, Oracle's interpretation becomes: every processor in every host the workload could migrate to.
This is not just an academic claim. It is the LMS audit-team's standard opening position on every virtualised customer, and it is the reason VMware-hosted Oracle workloads attract disproportionate audit attention.
The defence against the "could migrate to" claim rests on three structural choices:
Oracle Database licensing on VMware is the single most contentious topic in enterprise Oracle compliance. Oracle's position has shifted over years but never to the buyer's advantage. The current state:
Three defensive postures work in practice:
Our virtualised environments compliance playbook covers each posture in tactical detail.
Oracle maintains a closed list of partitioning technologies it accepts as limiting licence scope. The list has not changed materially in over a decade. As of 2026 the accepted technologies are:
| Technology | Approved as hard partitioning | Critical constraints |
|---|---|---|
| IBM LPAR (Power systems) | Yes — capped LPARs only | Uncapped LPARs are soft partitioning per Oracle. DLPAR adds risk. |
| Solaris Containers with capped resource pools | Yes | Resource pool must be defined with binding to specific cores. |
| Oracle VM Server (OVM) with CPU pinning | Yes — with strict configuration | Pinning evidence required at every audit. |
| Fujitsu PPAR | Yes | SPARC M-series specific. |
| HP nPars | Yes | HP-UX Integrity specific. |
| VMware vSphere | No | See VMware section above. |
| Microsoft Hyper-V | No | Same scope-expansion logic as VMware. |
| KVM, RHV, Nutanix AHV | No | Same as above. See Nutanix AHV licensing. |
| Container technologies (Docker, Podman) | No | Host-level licensing applies. |
The approved hard partitioning playbook covers each technology's configuration and evidence requirements. For the contractual side, see Oracle partitioning policy vs contract terms.
Soft partitioning — CPU caps, resource controls, processor sets at the OS level — does not satisfy Oracle's contractual position on hard partitioning. The Oracle Partitioning Policy document is explicit: only the technologies named in the approved list bind scope. Everything else is "soft" and licensed at full physical capacity.
However, soft partitioning still has defensive value in three scenarios:
Oracle's "Authorized Cloud Environments" document recognises AWS, Microsoft Azure, and Google Cloud Platform as approved for Oracle Database licensing under specific counting rules. The headline rule: count two vCPUs (with hyperthreading) as one Oracle Processor licence, or one vCPU (without hyperthreading) as one Processor licence.
This rule produces meaningfully different economics across the cloud venues:
Compliance traps in the cloud:
The 28 checks we run on every Oracle virtualised estate before any audit conversation. PDF, no follow-up.
Oracle Database 12c introduced the Multitenant Architecture — Container Database (CDB) holding multiple Pluggable Databases (PDBs). From 19c the PDB-without-Multitenant-option model permits up to 3 PDBs without licensing the Multitenant option (priced at $17,500 per Processor). From 21c forward, more PDBs are permitted in some configurations but the rules are precise.
Compliance landmines:
See Oracle Multitenant licensing for the operational mechanics.
The highest-volume LMS audit finding across the industry is options usage. Oracle's database options — Partitioning, Advanced Compression, Active Data Guard, RAC, Real Application Testing, Multitenant, Diagnostics Pack, Tuning Pack, Advanced Security, Database Vault, GoldenGate, and more — are licensed separately at significant prices. Most are enabled by default in 19c/23ai installations.
The compliance discipline:
DBA_FEATURE_USAGE_STATISTICS on every Oracle database in the estate, every quarter.See Oracle audit and database options for the LMS perspective and Diagnostics & Tuning Pack licensing for the two highest-volume option findings.
Oracle Java SE under the Universal Subscription Employee Metric is fundamentally an employee-count licence, but the underlying compliance question is "is Oracle JDK actually installed?". Three rules:
Compliance requires a comprehensive JVM inventory. See how to inventory Java installations and the broader Oracle Java licensing master guide.
Disaster recovery configurations attract specific compliance treatment. Oracle's rule of thumb: a passive cold standby that is unpowered until DR invocation does not require a licence; an active standby running Data Guard does; an Active Data Guard read-only standby requires the Active Data Guard option.
Three configurations and their compliance:
See Oracle audit and DR environments for the audit-defence specifics.
The single highest-leverage compliance investment is documentation. Three artefacts pay back across every Oracle audit:
DBA_FEATURE_USAGE_STATISTICS output, archived. Disabled options noted with timestamps.In audit, the value of these artefacts is that they shift the burden of proof. Oracle's standard tactic is to assert maximum scope and ask the customer to prove otherwise. Documentation pre-emptively does the proving.
A global pharmaceutical group received an LMS audit notice with Oracle's standard opening position: Oracle Database EE was licensed on 240 cores, but Oracle's scope claim covered 1,872 cores across the vCenter linked-mode estate. Oracle's preliminary findings asserted $32.4M in additional licence liability.
We ran a four-month pre-audit compliance reconstruction. Step 1: full deployment inventory with Oracle workloads confirmed running on 14 hosts only. Step 2: vCenter configuration reconfigured to isolate Oracle hosts from non-Oracle clusters; DRS Host Affinity Groups created with documented operational policy. Step 3: DBA_FEATURE_USAGE_STATISTICS scans on all instances, disabling four database options that were enabled-but-unused, documented with timestamps. Step 4: Audit response submitted with the compliance evidence, counter-position on Oracle's scope claim, and contract-language analysis of the customer's OMA.
Final audit settlement: $0. Oracle accepted the compliance evidence, the cluster isolation, and the option-usage cleanup. The customer retained the existing 240-core licence position with no additional purchase.
What is Oracle compliance?
The state of having every deployed Oracle product covered by a valid licence with all options, metric rules and partitioning rules correctly applied. The defendable position you must hold in any Oracle LMS audit.
Does Oracle recognise VMware as approved hard partitioning?
No. Oracle does not recognise VMware vSphere as approved hard partitioning, regardless of vSphere version. Oracle's contractual position requires licensing every physical core in every host the workload could migrate to. Defence rests on isolated clusters, DRS rules and documentation.
What is Oracle-approved hard partitioning?
A closed list of technologies Oracle recognises as limiting licence scope: IBM LPAR (capped), Solaris Containers with resource caps, Oracle VM with hard-partitioning rules, Fujitsu PPAR, HP nPars, and certain hypervisors on Exadata. The list is published in Oracle's Partitioning Policy document.
Can I license Oracle on AWS, Azure or GCP?
Yes. Oracle's Authorized Cloud Environments document recognises AWS, Azure and GCP under defined vCPU-to-Processor counting rules (two vCPUs = one Processor with hyperthreading; one vCPU = one Processor without). Database@Azure, Database@AWS and Database@Google Cloud are first-party managed alternatives.
Do I need to license Oracle on cold standby for DR?
A powered-off cold standby is generally not licensed during steady state and is licensed during failover. Active standbys running Data Guard require full Database EE plus matching options. Active Data Guard read-only standbys require the Active Data Guard option additionally.
A pre-audit reconstruction of your Oracle compliance posture by former LMS auditors — virtualisation, options, partitioning, Java, multi-tenancy. Quantified risk map, evidence pack, defensive position.
✓ Confidential · ✓ Independent · ✓ Not affiliated with Oracle Corporation