How to setup VNCServer on an OCI VM?

Now we are all working from home, I’ve noticed that my MAC laptop is severely overloaded when I do live demos during webinars. After all, it’s running my camera, Zoom, PowerPoint, my Java app, and monitoring tools.

So, I decided it was time to move my demo environment to the Oracle Cloud, where I quickly provisioned a 2-OCPU VM running Linux following the instructions in my previous blog post.

Screen Shot 2020-08-11 at 12.56.23 PM

Once I had my VM up and running, I wanted a proper desktop experience, so I needed VNC.

After a quick google search, I found the video below, which provides a very easy to follow, step by step guide to installing and configuring TigerVNC VNCServer on OCI infrastructure. I followed all of these steps except for the final stage where they describe adding the VNCServer to your firewall.

I’m married to a security expert, who strongly advised against this approach. He told me it would be far more secure to use an SSH tunnel instead of opening the firewall for the VNC port.

Below the video are the full set of commands I used in my setup, including how to establish the ssh tunnel, so you can quickly cut and paste them.

Commands to setup VNCServer on OCI

— ssh to your OCI VM environment
$ ssh opc@[your oci ip address]

— Become root
$ sudo bash

— Check to see if you already have ‘Server With GUI’ in your list of installed environment groups
# yum group list

— Assuming you don’t have ‘Server With GUI’ installed
# yum group install "Server with GUI"

— Confirm ‘Server With GUI’ is now in your list of installed environment groups
# yum group list

— Install TigerVNC
# yum install tigervnc-server -y

— Once installed exit the root session
# exit

— As the opc user set the VNCServer password
$ vncpasswd

— Return to root
$ sudo bash

— Copy the VNC service template file from /lib/systemd to /etc/systemd and include \:1.service in the destination filename
# cp /lib/systemd/system/vncserver@.service /etc/systemd/system/vncserver@\:1.service

— Edit the config file to replace placeholders with ops
# vi /etc/systemd/system/vncserver@\:1.service

— Reload the server unit configuration files
# systemctl daemon-reload

— Enable the VNC service
# systemctl enable vncserver@\:1.service

— Start the VNC service
# systemctl start vncserver@\:1.service

— Confirm the VNC service is started
# systemctl status vncserver@\:1.service

— Tiger VNCServer is now up and running

— On your Mac, you need to open the ssh tunnel by running the following command

$ ssh -L5901: opc@[your oci ip address]

— Once the tunnel is open, you can start the VNC viewer and enter the IP address

How to setup Swingbench and DB Time Monitor on OCI VM

Once I had the VNCServer up and running, I need my workload generator and monitoring tools.

I typically use Swingbench as my workload generator. I quickly installed it and connect to my Autonomous Database following the steps outlined in Dom Giles’s Blog.

However, I had a little more trouble setting up the graphical Database Time Monitor. Unlike Swingbench, which can use OpenJDK, Database Time Monitor needs an Oracle JVM. Lucky for me, I just needed to do a yum install of jdk1.8 and then switch the Java version for the shell where I started the Database Time Monitor using the following commands.

$ sudo yum install -y jdk1.8

$ sudo alternatives --config java

There are 2 programs which provide 'java'.
Selection Command
* 1 java-1.8.0-openjdk.x86_64
+ 2 /usr/java/jdk1.8.0_261-amd64/bin/java
Enter to keep the current selection[+], or type selection number:

How to install Oracle SQLcl on OCI VM and Connect to ADB

The final step was to set up Oracle SQLcl on my VM. If you aren’t familiar with SQLcl it’s a free command-line interface for the Oracle Database, similar to SQL*Plus but with a bunch of additional functionality. Jeff Smith has a super useful video to help you get started with it.

For non-OCI environments, you can download SQLcl from, but on OCI, Kris Rice showed me how to do it via a yum install.

$ sudo yum install sqlcl

Once installed, you can connect to an Autonomous Database using a Wallet file as follows:

./sql /nolog
SQLcl: Release 17.4.0 Production on Mon Aug 10 19:44:11 2020
Copyright (c) 1982, 2020, Oracle.  All rights reserved.
SQL> set cloudconfig /Users/mcolgan/Downloads/
SQL> connect admin@swingbenchatp_tp
Password? (**********?) **************

You can see this demo environment in action during my Oracle Developer Live session where I demonstrate how to achieve Hyperscale with Oracle Autonomous Database.

5 thoughts on “How to setup VNCServer on an OCI VM?”

  1. Hello Maria,

    (in Romania today, 8 September it is a holiday called Sf “Maria Mica”, So Happy Maria’s day 🙂 )

    I like this… “I’m married to a security expert, who strongly advised against this approach. He told me it would be far more secure to use an SSH tunnel instead of opening the firewall for the VNC port.”

    Great, but you should follow all the way his expert opinion as in you should not allow VNC connections from everywhere except the ones coming from the local machine running OCI VM (using SSH).

    You could consider adding −localhost option to your configuration of vncserver/xvnc

  2. What a great post ! I hve an additional question here. The Oracle VM has an application (WebLogic) running that needs a browser to access for the console (example http://oracleVM:7001/console).
    Do I need to install a Browser on the compute VM to access WebLogic Console on the compute VM ? The GUI I get does not at the end of this tutorial works but not sure how to use a browser to get to the weblogic console installed on the secure VM instance.

  3. Hi Maria,

    I had an interesting experience while installing tigervnc using the steps show above. I was using Oracle Linux 8.6 version. After I ran the groupinstall command “Server with GUI” I saw that the kernel version was upgraded to 8.7. I was surprised to see that. As the client had a specific requirement of 8.6 version I had to undo the install.
    Now I don’t have any documented options for the same. Please suggest if there are any other documented ways.

    Anirudha Singh

Leave a Reply

Your email address will not be published. Required fields are marked *