Locations

Resources

Careers

Contact

📅 Book a Meeting with Redress Compliance

Oracle OEM Licensing

Oracle Embedded Software License (ESL) – FAQs

oracle esl license faq

Table of Contents

Oracle Embedded Software License (ESL) – FAQs

What is an Oracle ESL (Embedded Software License)?

An Oracle Embedded Software License (ESL) is a highly restrictive Oracle license allowing a partner to deeply incorporate Oracle software into their product or solution.

Under an ESL agreement, an ISV embeds Oracle database or middleware so that the end user typically doesn’t even interact with Oracle software as a separate entity. Oracle technology operates “under the hood” of ISV applications.

In practical terms, the ISV’s application installer will install the Oracle software as a component, and the end customer may not even realize Oracle Database or WebLogic is running – they just use the application.

The end user cannot use the Oracle software independently of the solution and often has no direct access to it. ESL is essentially an OEM (Original Equipment Manufacturer) license.

Oracle is one part of a larger product, similar to how an engine might be embedded in a machine: it’s critical to function but not accessed independently.

How is an ESL license different from an ASFU or a full-use Oracle license?

ESL vs. ASFU vs. Full-Use can be thought of in terms of increasing freedom:

  • ESL (Embedded): Most restrictive. Oracle can only be used within the ISV’s application, and end users have no direct access to Oracle’s tools or database interfaces. Think of it as Oracle being completely behind the scenes. It comes with the highest discount (often ~90% off list) and notably does not require Oracle support to be purchased by the ISV.
  • ASFU (Application Specific Full Use): Moderately restrictive. Oracle is still tied to a specific application, but end users might have some limited access or ability to use Oracle features within that context. For instance, they might run reports or do minor admin tasks with vendor guidance. Oracle support is typically maintained by the ISV and is required. The discount is high (~50-60% off) but not as steep as ESL.
  • Full-Use License: The least restrictive. The customer can use Oracle software for any purpose allowed by Oracle’s general terms across any applications. The customer has full control and can contact Oracle directly for support. There is no special discount (beyond what you negotiate normally), and you pay standard support fees.

Another way: ESL is like a black boxOracle is completely hidden; ASFU is a gray box—Oracle is visible but fenced in; full-use is open—you have the keys to do anything (within license metrics).

The choice depends on how much flexibility and control are needed versus cost savings and simplicity.

Who is allowed to sell or use Oracle ESL licenses?

Oracle ESL licenses are available only to qualified partners/ISVs integrating Oracle technology into their solutions.

To obtain these rights, an ISV must join the Oracle PartnerNetwork (OPN) and usually sign an OEM/ESL agreement (often documented via an Application Specific or Embedded Program contract).

This isn’t something an end customer can buy from Oracle. Instead:

  • The ISV purchases the necessary Oracle licenses from Oracle under the ESL discount structure (usually at 10% of list price) and bundles them with its application.
  • The ISV then resells the combined product to end users. The end user typically doesn’t see a separate Oracle license—it’s often just part of the ISV’s product license terms.
  • Because it’s an embedded scenario, the ISV effectively acts as the supplier and supporter of Oracle technology for that customer.

The ISV must meet Oracle’s criteria, primarily that they have a proprietary software product that uses Oracle and are taking on support.

Often, Oracle will also check that the ISV has the technical capability to implement and support the embedded database or middleware. End users cannot go to Oracle and request an ESL; they get it via the vendor’s product.

What are typical use cases for Oracle ESL licenses?

ESL licensing is used when a vendor wants Oracle to be an invisible part of their product. Common scenarios include:

  • Industry-Specific Appliances or Devices: For example, a medical imaging system might have an Oracle database that stores records, but the doctor using it only interacts with the device’s user interface. The Oracle DB is embedded and managed entirely by the device software.
  • Vertical Software Solutions with No IT Intervention: Consider a retail point-of-sale system or ATM management software deployed at many sites. Each installation includes an Oracle database that the system uses internally. The store owner or bank doesn’t administer Oracle; it’s all behind the scenes. ESL works well here because it massively simplifies deployment (the installer handles Oracle).
  • Software with Turnkey Setup: An ISV might provide a “single installer” for their application, which sets up everything needed (application server, DB, etc.). Using an ESL, the Oracle database can be installed silently as part of that process. The end user just runs the installer and has a working system.
  • When Extreme Cost Sensitivity Matters: The 90% Oracle license discount under ESL is attractive if the target market is price-sensitive. For instance, small businesses or departmental software solutions can include Oracle without blowing the budget, because the license cost from Oracle to the ISV is very low.
  • No DBAs on Site: Solutions aimed at customers who do not have database administrators or IT staff to manage a database often choose ESL. The idea is that the end user should not even know Oracle is there. The application vendor takes on all the complexity.

ESL is chosen when the value proposition is “you get our application and you don’t need to worry about the database at all.” It’s perfect for delivering Oracle technology in a very controlled, productized way.

What are the main restrictions of an Oracle ESL license?

Oracle’s ESL comes with stringent restrictions to ensure the Oracle software is only used as intended within the ISV’s solution.

The main restrictions include:

  • Application-Only Use: The Oracle software can only be used by the specific application defined in the agreement. No other usage or access is allowed. The license is tied to a particular solution name and scope in the contract (APRF/PARF form).
  • No End-User Access: End customers cannot directly access the Oracle database or middleware. All interaction must happen through the ISV’s application interface. This means, for example, that the user cannot use Oracle SQL tools to query the database or log in to an Oracle console.
  • Silent Installation: The Oracle components must be installed as part of the application’s install process (often silently or automatically). The user typically doesn’t run a separate Oracle installer or provide input like database names; the ISV’s installer handles all that in the background.
  • No Third-Party Integration: The embedded Oracle instance cannot be integrated with or accessed by third-party applications unless explicitly allowed through pre-defined APIs provided by the ISV. For instance, if the ISV system allows some data to be exported or imported, it will be done through controlled methods. You can’t just hook up another software directly to the database.
  • Restricted Administration: End users cannot perform typical DBA tasks. For example, you cannot manually create users, schemas, or tables in the Oracle database outside of what the application does. Patching or upgrading the Oracle software by the end user is also not permitted – that’s the ISV’s job.
  • No Standalone Tools: End customers should not use Oracle management or development tools (SQL Developer, etc.) on an ESL database. The credentials and configuration needed to do so might not even be shared with the customer.
  • Non-Transferable & Non-Extendable: The ESL license cannot be repurposed for any other application or separated from the solution. If the customer stops using the ISV’s application, they cannot continue using the Oracle software under that license.
  • One Application at a Time: Generally, one ESL license covers one specific application package. If an ISV has multiple distinct products, each would have its own ESL agreement. You can’t use one product’s embedded Oracle to run another product.

These restrictions are much tighter than those of ASFU. Essentially, Oracle is locked down within the ISV’s solution box. From the end user’s perspective, the database is an integral part of the application, not a separate product.

Can end users directly access or manage the Oracle software under an ESL license?

No, end users cannot directly access or manage the Oracle database or other Oracle software when it is under an ESL license.

This is one of the hallmark traits of ESL. Specifically:

  • No Direct Login: Users will not have Oracle database usernames/passwords to connect via SQL*Plus, SQL Developer, or other admin tools. The database is typically secured, so only the ISV application uses it internally.
  • Administration via Application Only: Any administrative tasks (creating a backup, starting/stopping the database, etc.) must be done through the application’s interface or utilities. Some embedded applications might have a maintenance console that performs these tasks behind the scenes. However, the user isn’t running Oracle utilities; they click a button in the app like “Backup Now,” and the application triggers Oracle’s backup routines programmatically.
  • No Configuration Tweaks: The end user cannot manually configure Oracle settings during installation and afterward. Setting memory parameters, changing file locations, and applying patches are handled by the ISV or are not exposed.
  • Read/Write Access: Even reading data directly is off-limits. You won’t be hooking up an ODBC or JDBC connection from Excel or a third-party report tool straight to the Oracle DB, because you shouldn’t have the connection details. The ISV might provide an export function or report module if read access is needed.

The idea is that the end customer should act as if Oracle isn’t there. If you’re used to having a DBA in your team, this requires a mindset shift: for that ESL-embedded database, your DBA has essentially no role. It’s all handled by the vendor.

From a governance perspective, this means less control, but from a user’s perspective, it means simplicity (one less thing to manage). Companies should ensure they are comfortable ceding that control when they opt for an ESL-based solution.

How is the Oracle software installed and integrated in an ESL scenario?

In an ESL setup, the installation and integration of Oracle software is designed to be seamless and behind the scenes:

  • Bundled Installer: The ISV will provide an installer (or a set of installation scripts) for their product, which automatically includes Oracle installation steps. You typically run one setup program that installs the ISV’s application and silently installs the Oracle database or middleware needed.
  • Silent or Automated Configuration: The Oracle installation under ESL doesn’t ask the end user typical questions (like “what’s your SID or where to install data files?”). The ISV’s installer predefines those. For example, it might create a database with a fixed name, in a specific directory, with certain initialization parameters suitable for the application, all without user input.
  • Embedded Configuration: Oracle is configured to start and stop with the application once installed. The end user might see, for instance, a Windows service or a Linux process for Oracle, but the application’s scripts manage it. The integration might include automated backups or maintenance jobs set up by the ISV.
  • Application Integration: The application knows how to talk to the Oracle database. It will use specific connection strings, likely to a local database instance. Because every installation is nearly identical in how Oracle is set up, the ISV can ensure their software works out of the box. They may even include pre-populated schema objects or reference data in the database as part of the install.
  • No End-User Choices: Importantly, the user is not given choices during installation, like with a normal Oracle install. This ensures consistency. It also means the user can’t inadvertently configure something incorrectly—the ISV controls the whole environment.
  • Updates via Patches: When the ISV issues updates, those might include updates to the Oracle schema or even the Oracle software version. These would be applied via the application’s update mechanism. For example, applying a service pack to the application might run some scripts to upgrade the Oracle database schema or apply new Oracle parameters.

From the IT team’s perspective, installing the product feels like installing the application. They might notice it takes a while (because an Oracle DB is being set up in the background), but they aren’t separately installing Oracle.

The tight integration makes ESL appealing: it’s as turnkey as possible. However, if something goes wrong in that automated installation, the end user can’t easily troubleshoot it—they’d need to involve the vendor.

Can any other tools or third-party applications use the embedded Oracle software?

No, by licensing rules, the Oracle software in an ESL deployment cannot be used by third-party applications or tools outside the ISV’s solution.

This is a fundamental restriction to ensure the Oracle instance is dedicated to the intended use. For example:

  • You cannot directly connect a separate reporting tool or analytics software to the embedded Oracle database to run queries. If you tried and somehow obtained the credentials, that would violate the license terms (and likely the ISV’s support agreement).
  • If you have another application that normally needs a database, you cannot point it at the ESL Oracle database, even if it’s on the same server, because that would be unlicensed usage. Each third-party application would need its own Oracle license (or its own embedded arrangement).
  • APIs Only: Third-party software might interact only via exposed APIs or data export/import features of the ISV’s application. For instance, the ISV might allow a scheduled data export to CSV, which another system can consume. Or they offer a web service API where an external tool can request data, and the ISV’s application fetches it from Oracle internally. These interactions are allowed because the ISV application still uses Oracle behind the scenes.
  • The Oracle instance is typically locked down to prevent external connections. Firewalls or a lack of listener information might block external access. The ISV does this not just for licensing but also to ensure nothing interferes with performance or data integrity.

In summary, the embedded Oracle is exclusive to the ISV’s application. If you foresee a need for open access to the database for integration, ESL is not the right model – you’d need ASFU or full-use licensing where such integration can be licensed. ESL is about encapsulation: only the ISV’s code can “touch” the Oracle software directly.

Do end customers need to pay Oracle for support or updates in an ESL arrangement?

No, end customers do not purchase Oracle support for an ESL license. One distinctive aspect of ESL is that Oracle technical support is not required on those licenses.

Here’s how support works instead:

  • ISV-Provided Support: The ISV supports the entire solution, including the Oracle component. As an end customer, you would typically have a support agreement or maintenance contract with the ISV (often a percentage of the solution cost annually) and contact the ISV for any issues.
  • Oracle Support (Internal to ISV): Many ISVs with ESL choose not to have an Oracle support contract on those licenses (since Oracle doesn’t mandate it). They might rely on their testing or Oracle’s free resources for certain things. However, some ISVs maintain a minimal Oracle support relationship (for example, to get patches or help with critical issues). This is behind the scenes; you, as the customer, aren’t involved in that decision or payment.
  • Cost Savings: Because Oracle support isn’t required, the ISV’s costs are lower, and presumably, those savings are reflected in the solution price or maintenance fee. With ASFU or full-use, there’s usually a 22% or similar support cost each year. ESL avoids that extra Oracle fee entirely in many cases, which can significantly reduce costs over time.
  • Updates and Patches: Even without an Oracle support contract, ISVs in the Oracle partner program often have access to software updates (through Oracle’s partner portals or as part of their licensing agreement). The ISV will bundle necessary updates into their product updates. The end user doesn’t pay Oracle for new versions; it’s all delivered via the ISV’s maintenance service.
  • If Oracle’s Help Is Needed: In rare cases, if there’s a deep technical issue with Oracle, the ISV might need to engage Oracle. If the ISV doesn’t have support, they might have to purchase one-time incident support or re-enroll. But these scenarios are typically invisible to the end customer—the ISV should handle them.

The bottom line for the end customer is that you don’t separately budget for Oracle support. Your support relationship is solely with the solution provider.

This simplifies vendor management (one support vendor instead of two) and reduces costs, but it also means you rely entirely on the ISV to fix things.

What are the cost benefits of ESL licensing for vendors and customers?

The cost benefits of ESL licensing are significant, which is why this model exists:

  • Huge License Discount: Oracle provides ISVs a steep discount (around 90% off the standard price list) for embedded licenses. That means the ISV pays only 10% of what an equivalent full-use Oracle license would cost. This huge reduction enables ISVs to include Oracle in their product without making it expensive. For the end customer, it means you’re effectively paying for only a fraction of Oracle’s cost as part of the solution.
  • Royalty Model Option: Some ESL agreements use a royalty model where the ISV doesn’t pay per license but rather pays Oracle a percentage (commonly ~10%) of their product’s revenue. This aligns costs with the ISV’s sales. The benefit: the ISV doesn’t have to count users or processors; they just share a cut with Oracle. For customers, it’s usually embedded in the price – you wouldn’t see a separate line item, but the ISV’s pricing might factor in that royalty.
  • No Ongoing Oracle Support Fees: As mentioned, the ISV often avoids the 22% annual support cost from Oracle. If the ISV passes that saving on, customers might see lower annual maintenance fees than an equivalent product where the vendor must pay Oracle support. Even if the ISV keeps a support contract, Oracle charges only 0%–19% on ESL licenses (some ISVs negotiate support differently).
  • Economies of Scale: If an ISV sells to many customers, it leverages one Oracle OEM agreement for all. The development and integration cost of Oracle is spread across customers. So, each customer doesn’t individually shoulder the full cost of an Oracle license; it’s amortized. This can make high-end Oracle technology affordable in markets it otherwise wouldn’t reach.
  • Competitive Solution Pricing: The net effect is that solutions with ESL can be priced more competitively against alternatives (even against solutions built on “free” databases) because Oracle’s cost to the ISV is minimal. Oracle subsidizes the ISV to use its technology in exchange for volume deployment.

From the end customer’s perspective, you benefit because you get Oracle’s performance and reliability as part of the product without paying Oracle’s typical premium. For example, a small business accounting software might have an Oracle Database powering it.

Still, your price might be similar to what it would be if it used a cheaper database because the vendor got Oracle at 90% off. This is a win-win that is intended to encourage Oracle adoption via third parties.

Can an ESL license be converted or upgraded to a full-use Oracle license if needed?

Generally, you cannot convert an ESL license to a full-use Oracle license. ESL licenses are considered a different category altogether, and Oracle’s policy is that they are non-transferable to other usage.

If an end customer needs a full-use license one day, they must acquire a new license separately from Oracle.

Implications:

  • As a customer, if you outgrow the confines of the embedded license (for example, you now want direct access to the database or run additional applications on it), you’d have to approach Oracle or an Oracle reseller to purchase a normal license. That would be a new transaction at regular pricing (though you could try to negotiate).
  • The Oracle database under the ESL license might technically be upgraded to a full-use license (the same software). Still, legally, you’d need to obtain proper licensing, then possibly reconfigure. In practice, one might convert by installing a full-use license key or changing documentation, but Oracle will treat it as if you bought a fresh license.
  • One reason for this lack of conversion is the price differential. ESL is 90% discounted; Oracle isn’t letting an end user convert that into a full license because that’d be like permanently getting Oracle for 90% off. Instead, they’ll want the customer to pay the normal fee for broader usage rights.
  • For the end user, if you anticipate that you might need Oracle beyond the vendor’s application, you should consider licensing Oracle separately from the beginning or ensure the vendor offers an ASFU model instead of ESL. Some ISVs provide both options (ESL for a truly locked-down, cheap version, and ASFU or referral for a more open version).

So, practically, if you needed to “convert,” the typical approach would be:

  1. Purchase a full-use Oracle license for the environment.
  2. Migrate the database from the embedded environment to the new fully licensed environment (or change the licensing paperwork with Oracle if they allow it).
  3. Terminate the use of the ESL license (likely by informing the ISV and ensuring you’re not counted under their OEM usage).

This can be a costly and somewhat complex transition. It’s seldom done because, ideally, ESL is used only when the customer is content with the long-term black-box approach. If there’s uncertainty, a more flexible license model at the outset is preferable.

How does compliance and auditing work for ESL licenses?

Compliance in ESL scenarios shifts responsibility largely to the ISV:

  • Oracle’s Audit Rights: Oracle typically has no right to audit the end customers directly for ESL deployments. Instead, Oracle can audit the ISV that holds the OEM agreement. Oracle might ask the ISV to demonstrate how many copies are deployed, within agreed usage, etc.
  • ISV’s Role: The ISV must track where their software (with embedded Oracle) is deployed and ensure each deployment sticks to the license terms. They might have measures like ensuring the software enforces no external access. If Oracle audits them, the ISV may need to show, for example, how they prevent misuse and provide customer lists or deployment counts.
  • End Customer’s Compliance: As an end user, you are not signing a license agreement with Oracle, but you will sign one with the ISV, which includes obligations to not misuse the embedded software. So you are contractually bound (to the ISV) to follow the rules. If you violate them, the ISV can hold you liable for any resulting costs or penalties they suffer. Essentially, you have an indirect compliance obligation.
  • Audit Process: If Oracle audits the ISV and finds something, the ISV might audit or investigate certain customers in turn. However, such cases are rare when everything is properly locked down technologically.
  • SAM Tools and Tracking: One nuance is that standard Software Asset Management (SAM) tools often detect Oracle installations but can’t properly account for ESL licenses, because from Oracle’s perspective, those aren’t standalone licenses the customer owns. This means if you run a license audit tool in your environment, it might flag an Oracle database. Still, you have to know “that’s covered by an embedded license via vendor X”. You should keep records of which applications include Oracle OEM licenses to explain that if needed.
  • Volume/Usage Limits: Some ESL agreements might have usage limits (for instance, maybe the license is limited to a certain number of users or a certain functionality). It’s the ISV’s job to enforce those via the application. Oracle could audit the ISV to ensure those limits are respected. As a customer, just use the product normally, and you should be fine – you typically can’t exceed limits because the app would stop you, or it’s not designed to allow it.

In summary, Oracle trusts the ISV to police the usage; the end customer is one step removed from Oracle in compliance matters.

This can be comforting (Oracle won’t knock on your door directly), but it also means you must adhere to the contract with the ISV to avoid causing them trouble. Always treat the embedded Oracle as a closed box – that mindset ensures you stay compliant.

What roles do ISVs and partners play in managing ESL licenses?

In the ESL model, the ISV partner essentially does everything regarding the Oracle component, acting as the proxy for Oracle in many ways:

  • Licensing Agreement Holder: The ISV signs the OEM/ESL agreement with Oracle and is the official licensee for the Oracle software. They are responsible for buying the licenses (with huge discounts) and making sure each customer deployment is covered under their agreement.
  • Packager and Integrator: The ISV is responsible for integrating Oracle into its product. This means engineering the installation process, optimizing Oracle’s configuration for their app, and possibly disabling or hiding features that aren’t needed. They ensure that Oracle runs smoothly as part of their solution.
  • First-Line Support: The ISV supports the Oracle software for the end user. If the database has issues, the ISV’s support team addresses it. They may escalate to Oracle if they have a support contract, but the customer deals only with the ISV. This requires the ISV to have in-house expertise (Oracle DBAs or similar experts) to troubleshoot performance, errors, etc.
  • Compliance Gatekeeper: The ISV monitors compliance. They include the license restrictions in the customer agreement, educate customers (or design the system so that customers cannot break the rules), and keep records of how many licenses are deployed, on what hardware, etc., to be audit-ready.
  • Upgrades and Patches Management: When Oracle releases a patch or a new version, the ISV decides if and when to incorporate it. They test it with their application and then provide it to customers as part of their product’s upgrade cycle. This means the ISV also maintains a roadmap aligning their product support with Oracle’s support lifecycle (e.g., if Oracle’s version goes out of support, the ISV needs to move customers to a newer version via updates).
  • Bridge to Oracle: If a severe Oracle issue arises (like a critical bug or a need for a security patch), the ISV may contact Oracle (through whatever support or partnership channel they have) to get a fix or guidance. The ISV then relays that to the customer via a patch or a knowledge base article. The customer never works with Oracle directly, so the ISV is the bridge when Oracle’s resources are needed.

From a customer standpoint, a good ISV partner in an ESL scenario is technically adept with Oracle and proactive in maintenance. Essentially, you are outsourcing all Oracle-related tasks to that vendor.

The ISV, in turn, has to juggle two masters: keeping Oracle satisfied (licensing, audits, etc.) and the customer satisfied (performance, uptime, support).

This dual role is critical – if the ISV fails at the Oracle side (say, gets audited and found deficient), it could impact you, and if they fail at support, that impacts you directly. Thus, ISVs who take on ESL usually invest in the capability to manage it well.

What rights and limitations do end customers have with Oracle software under ESL?

Under an ESL license, the end customer’s rights to the Oracle software are extremely limited, largely confined to using the Oracle-powered application as intended.

Here’s what you can and can’t do:

  • Usage Rights: You can use the Oracle software only as an embedded part of the vendor’s application. If the application uses Oracle to store data and process transactions, you can input data, retrieve information, and perform all functions provided by the application. Essentially, you indirectly enjoy the benefits of Oracle (reliability, performance) through the app.
  • No Standalone Rights: You do not have the right to use Oracle software independently of the application. If you were to stop using the ISV’s application, your right to run the Oracle database ceases. For example, you can’t attach the Oracle database to a different application or run custom queries for a separate project – that would require a full Oracle license, which you don’t possess.
  • No Modification Rights: You can’t alter the Oracle software environment—you can’t add users, change schema outside what the app does, or enable extra Oracle options. Many Oracle optional features (like certain advanced security or performance packs) might not even be part of the ESL license unless the ISV specifically includes them.
  • Data Rights: You have rights to the data contained in the database. The vendor can’t hold your data hostage. You should be able to get your data out via application features. However, you might not have direct database export rights except through the app. If you needed a full data dump for migration, typically the vendor would assist because you can’t just connect and dump it yourself without breaking terms.
  • Support Expectations: You have the right to get support on the overall solution from the ISV, but you can’t call Oracle for support or use Oracle’s support resources (updates, patches) directly. The ISV is your sole avenue.
  • Upgrade Rights: If you are under maintenance with the ISV, you have the right to receive upgrades to the Oracle software as part of application upgrades. However, you can’t independently upgrade Oracle versions (the ISV will dictate when and how).
  • License Termination: If you breach the ISV’s license terms (for instance, by attempting unauthorized use of the Oracle component), the ISV could terminate your license to the software. That would effectively shut down your right to use the application (and thus Oracle). This is similar to any software, but worth noting given how tightly the Oracle part is controlled.

In summary, as an end customer with ESL, your “rights” to Oracle basically mean you can benefit from it as a hidden engine. You don’t own or separately control that engine. This is usually acceptable because your focus is on using the application, not Oracle.

Just be aware of the boundaries: if you ever need more control or usage of Oracle beyond the application, you legally don’t have that with ESL.

What happens if an end user tries to directly use or tamper with the Oracle database in an ESL setup?

Suppose an end user somehow bypasses the intended usage and directly accesses or modifies the Oracle database in an ESL setup.

In that case, it is considered a violation of the license terms and can have several repercussions:

  • Technical Support Void: The ISV will likely consider this outside the support boundaries. Suppose an issue arises from direct access or changes (say, data corruption or performance problems). In that case, the ISV may refuse to support until the unauthorized changes are removed or might charge extra to remediate. You’d be on your own because you stepped outside the agreed-upon usage.
  • Contractual Breach: Most ISV license agreements will state that you cannot access the Oracle component directly. By doing so, you breach that contract. The ISV could potentially terminate your license (in extreme cases) or require you to remedy the breach immediately.
  • Liability for Compliance: If direct use is involved, for example, using Oracle for something else, it might create an unlicensed usage scenario. During an Oracle audit of the ISV, if discovered, the ISV could face penalties and might pass those on to you. For instance, if you connected an external app to the database that’s clearly outside the license, Oracle might charge the ISV for a full-use license for that deployment. The ISV in turn would likely ask you to cover that cost since your misuse triggered it.
  • Security Measures: Many ISVs design their systems to prevent or discourage this. They might obfuscate the database password or regularly overwrite it, so customers can’t log in. Tampering might even void warranties. So, beyond the legal aspect, you risk breaking the system or losing vendor warranties if you hack your way in.
  • Data Integrity Risks: Without the ISV’s guidance, making changes directly in the database could break the application logic. If the application detects unexpected changes, it might malfunction. For example, manually adding a row in a table could confuse the app, or bypassing business rules could cause errors.
  • Audit Trail: If the Oracle database has auditing turned on or if the application tracks changes, the ISV might detect that someone accessed it improperly. This could lead to a compliance investigation by the ISV.

In short, attempting to treat an ESL database as your own is not only a violation but also risky. It’s akin to opening up a sealed appliance – you void the warranty and assume the risk of damage.

Companies should educate their IT staff that even though an Oracle DBMS is present, they must leave it alone outside of the application’s provided tools. If additional access is needed, it’s better to talk to the vendor (maybe they can offer a different licensing model or a special arrangement) than to secretly access it.

Can standard software asset management (SAM) tools track ESL Oracle licenses?

Typical SAM tools can discover the presence of Oracle software, but they cannot correctly manage or license-count an ESL deployment. Here’s why and what to do:

  • Detection vs. Licensing: A SAM tool might scan a server, detect that Oracle Database binaries are installed, and even detect that an instance is running. It might flag this as an Oracle installation needing a license. However, it won’t be known that this instance is covered under an ESL agreement via an ISV because that information is contractual and not something the software reports.
  • False Positives: If you’re a company with a SAM practice, you may get alerts like “Unlicensed Oracle detected” when it’s properly licensed via ESL, just not in the traditional way. It’s important to document such cases outside the tool. You might note in your SAM records, “Server X: Oracle Database for [VendorName] application – licensed under OEM agreement through vendor.”
  • No Oracle CSI: ESL deployments might not have a Customer Support Identifier (CSI) with Oracle tied to your company. In Oracle’s records, it’s usually the ISV’s CSI or none if support isn’t purchased. So, if your SAM tool integrates with Oracle’s GLAS/License Management Service, it wouldn’t find a matching entitlement for your company. That’s expected in ESL.
  • Management by ISV: The ISV is managing those licenses, not you. So your internal SAM process should consider those Oracle installations as “third-party licensed.” Some SAM practices exclude OEM/OEM licenses from their counts or track them separately as “embedded in X product.”
  • Audits: If your company undergoes a license audit (by Oracle or a third party), you’ll need to explain any Oracle installations that are OEM/ESL. Oracle’s audit team generally knows to ask for OEM licenses. You would provide the contract or proof that it’s part of a vendor solution. Oracle should then redirect any compliance questions to the ISV.
  • Tracking Deployment Numbers: While the end user doesn’t need to track usage for Oracle’s sake, it’s wise to know how many instances of the embedded software you have (since that correlates to how many copies of the vendor application are deployed). This is more for operational oversight than licensing, but it could matter if your usage grows beyond what the ISV expected (just to ensure you have enough support from the ISV side).

SAM tools alone won’t handle OEM/ESL Oracle licenses correctly. You need to complement them with good record-keeping of your OEM-licensed software.

Mark those installations clearly in your inventory as covered by vendor XYZ’s license. This prevents confusion down the line.

What should ISVs consider when choosing between an ASFU and an ESL license model?

For ISVs (vendors) deciding how to license Oracle for use with their applications, the choice between ASFU and ESL involves evaluating trade-offs in flexibility, cost, and customer experience:

  • Customer Access Needs: If your customers will ever need or want direct database access (even limited) or the ability to do their reporting/queries, ASFU might be more appropriate since it’s less restrictive. ESL is when you don’t want the customer in the DB.
  • Application Self-Containment: ESL is ideal if your application can be completely self-contained, requiring no DBA on the customer side. ESL aligns well if that’s your selling point (easy deployment, no IT fuss). If your application benefits from customers being able to do some custom extensions or integration, ASFU provides a bit more leeway.
  • Support Burden: With ESL, you, as the ISV, handle potentially all Oracle issues. If you have strong Oracle expertise and are prepared for that, ESL is fine. If not, ASFU might reduce some of the burden because Oracle support is still there (through you, but Oracle expects you to have it). Note: ASFU requires you to maintain Oracle support (usually), whereas ESL does not, which could sway the cost. However, ASFU also means you can formally escalate issues to Oracle if needed.
  • Cost and Pricing Strategy: ESL gives a larger discount (90%) than ASFU (~60%). If your market is very price-competitive, ESL’s discount could help you price more aggressively. However, consider that with ESL, you might not collect Oracle support revenue from customers (since you might not have Oracle support cost). In contrast, with ASFU, you might charge 22% maintenance on the Oracle portion. Some ISVs factor that into their business model.
  • License Management Complexity: ESL can simplify things like not having to count users (especially if you do royalties). ASFU often uses standard metrics (NUP or Processor), which you must manage per customer. That could be more administrative overhead to track compliance. ESL’s royalty model, for example, is a simpler “X% of my sales” to Oracle, which might be easier to administratively handle if you have many small deals.
  • Future Needs and Migration: Consider whether any of your customers might outgrow the model. If you foresee customers potentially asking for more control (maybe large enterprises who use your solution but also want DB access), offering an ASFU or full-use option could be wise to accommodate them. ESL could frustrate those types. Some ISVs offer tiers: an entry-level with ESL and a higher-end deployment with full use (customer provides Oracle license or buys it).
  • Oracle Contract Nuances: When negotiating with Oracle, sometimes Oracle might steer you one way or the other based on its strategy. ESL locks out Oracle support revenue but might get them more volume; ASFU gets them support revenue and easier conversion to full licenses. An ISV should consider what Oracle is willing to approve. Very high-security or mission-critical apps might even require Oracle’s support (thus ASFU) to avoid an incident that reflects poorly on Oracle.

In short, ISVs should choose ESL when they want maximum control, lowest cost, and a completely turnkey user experience and are willing to take on full responsibility for the Oracle component.

ASFU is chosen when they need to grant a bit more flexibility to the customer or align with customers’ IT practices, and when a moderate cost increase is acceptable for that flexibility. Often, it comes down to the target customer: if selling to non-IT-savvy clients, ESL is great; if selling to enterprise IT departments who expect some control, ASFU might be better.

How are upgrades and patches to the Oracle software handled in an ESL-licensed product?

In an ESL scenario, the ISV manages upgrades and patches to Oracle, meaning the process is tied to the product’s upgrade cycle:

  • Regular Patches: For interim patches (like security patches or minor bug fixes), the ISV will obtain the patch (if they have Oracle support or via Oracle’s partner channels) and test it with their application. Once verified, they distribute it as part of an application patch or update utility. The customer might be instructed to run a patch installer that updates the application and the embedded Oracle. In some cases, if the patch is critical (say, a security fix for Oracle), the ISV may proactively reach out with a special update kit.
  • Major Version Upgrades: When Oracle releases a new major version (e.g., Oracle DB 19c to 21c), the ISV will decide whether and when to move their application to that version. Often, ISVs skip some versions and only upgrade when there’s a clear benefit or when the older version nears end-of-support. The migration to a new DB version would come as part of a new version of the application. For example, “MyApp 5.0” might now include Oracle 21c, whereas “MyApp 4.x” was on Oracle 19c. Customers would be guided through an upgrade process that includes migrating the database. This might involve backing up data, installing the new Oracle version via the product installer, and restoring/migrating data into it – all orchestrated by the ISV’s procedures.
  • Transparency: The ISV will usually inform customers of the Oracle part of an upgrade in release notes or documentation. However, some less technical customers might not even realize “Oracle was upgraded”. They just follow the application upgrade steps. More technical customers might verify the Oracle version post-upgrade out of curiosity or compliance.
  • Support Alignment: ISVs have to keep an eye on Oracle’s support lifecycle. If the Oracle version their product uses is going out of support, they’ll plan an upgrade so their customers aren’t running unsupported Oracle software (which could be a risk). That said, since end customers don’t have direct Oracle support, it’s the ISV’s problem if the Oracle underlying gets out of support with Oracle – it might mean the ISV can’t get help or patches, which is a risk to both them and customers. So, a responsible ISV will upgrade Oracle promptly.
  • End User Actions: From the end user perspective, upgrading the Oracle part is just part of upgrading the application. They should follow the vendor’s instructions carefully. It might involve some downtime and backups. The vendor usually handles any Oracle-specific steps (like running upgrade scripts on the database) automatically or with clear guidance.
  • Testing: Companies using the ESL product should, like any software, test new releases in a non-production environment if possible. Although the vendor tests Oracle version changes, each environment has its nuances. Because you, as the user, can’t tweak the Oracle settings, your main concern is verifying that the application still works with your data and usage patterns after the upgrade.

Overall, the ISV aims to make Oracle upgrades as painless as possible for customers, often to the point where the customer might not fully realize that “this is a database upgrade”—it’s just part of a normal software version update.

What are the common pitfalls or mistakes for end users and ISVs regarding ESL licenses?

For end users:

  • Attempting Unauthorized Access: As discussed, a common mistake is trying to log in to the embedded database for “harmless” reasons (like running a query for data because it seems easier). If done incorrectly, this can lead to breaking the support agreement or even corrupting data. End users should resist the temptation to tinker, even if they have Oracle skills in-house. Always go through the vendor for any data needs.
  • Not Realizing Oracle is Present: Sometimes, customers forget or don’t realize that Oracle is part of the package. This can be an issue during internal audits or when planning infrastructure. For instance, an admin might unknowingly move the application to a server environment not certified for Oracle, or on virtualization that violates Oracle policies (like moving an instance across hosts without considering licensing). You must remember that Oracle’s technical requirements (like not running on uncertified containers, etc.) still apply. The ISV usually documents platform requirements – follow those as if you were running Oracle, because you are (just indirectly).
  • Neglecting Backups: Since the end user isn’t directly managing the DB, sometimes backups are overlooked. The ISV’s application might have a backup utility; users should use it. If not, coordinate with the ISV to safely back up the data. A pitfall is assuming the app “takes care of itself” entirely. If the ISV expects the user to schedule backups (through the app’s provided tools), not doing so could be disastrous in a crash.
  • License Scope Creep: An end user might deploy the application in more environments than intended (like multiple production instances or using a single license at two sites), thinking it’s fine because it’s “just part of our app”. But ESL licenses are typically one per instance of the application. Over-deploying without informing the vendor could put you out of compliance (the ISV might not have paid Oracle for that extra deployment). Always stick to the licensing terms – if the app is licensed per server or user, those metrics also cap Oracle usage.

For ISVs:

  • Underestimating Support Load: An ISV might jump into ESL for the cost-benefit, but then struggle because supporting an Oracle database (even embedded) requires expertise. A mistake is not having at least a few Oracle-savvy engineers or DBAs available. This can lead to poor app performance at client sites and unhappy customers. ISVs should invest in Oracle training or hire experienced staff as part of adopting ESL.
  • Over-restricting (Customer Frustration): If an ISV locks everything down too much, some customers may get frustrated (particularly more tech-savvy clients). For example, not providing any method to get data out can be a pain point. The ISV should ideally provide safe avenues (reports, exports) to avoid customers needing to break in. A pitfall is ignoring that and having disgruntled customers who might attempt workarounds.
  • Compliance Oversight: ISVs might themselves slip on compliance – e.g., not properly limiting the Oracle usage per the agreement, or losing track of how many instances are deployed at clients. This is dangerous if Oracle audits them. Another mistake is not updating the Oracle contract when the application changes – for instance, if they expand their solution’s functionality, they might need to update the APRF (Application Package Registration Form) with Oracle. Neglecting that could mean some features customers use aren’t technically covered under the Oracle license terms.
  • Ignoring Oracle’s Technical Policies: Just because it’s OEM doesn’t mean Oracle’s rules on partitioning or virtualization magically disappear. For instance, if the ISV or customer runs the embedded DB on VMware clusters improperly, Oracle could argue that more licenses are needed from the ISV. ISVs must ensure their customer deployment guidelines adhere to Oracle’s policies (or negotiate exceptions with Oracle). Overlooking this could cause an unpleasant surprise in an audit.
  • ESL in Cloud: If an ISV or customer moves the solution to a public cloud, a mistake is not checking if the ESL agreement allows it. Oracle might require a cloud amendment, which could be a compliance gap. We’ve seen cases where an ISV’s customer wants to host the app in Azure/AWS, which caused a scramble to sort out licensing after the fact.

Both parties should maintain good communication. ISVs should educate their customers on what not to do (in a friendly way), and customers should ask whenever uncertain. Because ESL is a bit of a special beast, clarity helps avoid these pitfalls.

In what scenarios is an ESL license the most appropriate choice?

ESL licenses are most appropriate when the following conditions align:

  • Turnkey Solutions: The solution is meant to be turnkey, with minimal IT involvement from the customer. ESL is ideal if you’re delivering a product to a small clinic, a retail shop, or a remote office, where they just want to run the software without managing a database. It allows the software to be plug-and-play.
  • Cost-Sensitive Markets: ESL’s cost model makes Oracle viable if the target market wouldn’t bear the cost of a separate Oracle license. For example, embedding Oracle in a mid-market software offering (where customers typically might go for SQL Server or an open source DB to save money) can now be cost-competitive because of the 90% discount.
  • No Need for Customization: Customers are not interested in customizing the underlying database or doing fancy integrations. Perhaps the software fulfills a specific need, and all necessary functionality is built in. ESL shines in these use-and-forget scenarios.
  • Large Volume Distribution: If an ISV plans to distribute the software to many customers in cookie-cutter deployments (hundreds or thousands of sites), ESL with a royalty model simplifies licensing – Oracle just takes a cut. One example is an embedded Oracle in equipment or devices sold globally (like a network appliance): the vendor doesn’t want to manage per-device licensing; a royalty ESL deal is perfect, and the customers just use the box.
  • Vendor Control: The ISV wants strict environmental control to ensure consistency and supportability. Perhaps their application is very sensitive to configuration, and they don’t want customers’ DBAs making changes that could break things. ESL legally and technically enforces that control. It can result in higher stability and less variability in performance because every deployment is the same Oracle setup.
  • Lesser Importance of DB Brand to Customer: Sometimes, clients want a certain database (maybe they have a company standard). If your customers care about having direct Oracle control or prefer using their licenses, ESL could conflict with that desire. But if customers don’t care what’s under the hood (they just care that the app works), ESL is fine. A good scenario is when the vendor’s app is the focus and Oracle is not a selling point (it’s just a hidden engine).

An example scenario: A small hospital buys a hospital management system from an ISV. The hospital has no IT department – just a few technicians. The ISV uses ESL to embed Oracle. The hospital installs the system, Oracle runs quietly inside, and the staff never deals with the database admin.

They pay an annual fee to the ISV, and everything is taken care of. This is a win for all sides: the hospital gets a robust system without needing a DBA, the ISV streamlines its support, and Oracle uses its technology widely with minimal sales effort.

If those conditions aren’t present (say the customer wants DB control, or the environment is very bespoke), then ASFU or full licenses might be more appropriate despite the higher cost. ESL is about simplicity and low cost at the expense of flexibility.

Do you want to know more about our Oracle Advisory Services?

Please enable JavaScript in your browser to complete this form.
Name
Author
  • Fredrik Filipsson

    Fredrik Filipsson is the co-founder of Redress Compliance, a leading independent advisory firm specializing in Oracle, Microsoft, SAP, IBM, and Salesforce licensing. With over 20 years of experience in software licensing and contract negotiations, Fredrik has helped hundreds of organizations—including numerous Fortune 500 companies—optimize costs, avoid compliance risks, and secure favorable terms with major software vendors. Fredrik built his expertise over two decades working directly for IBM, SAP, and Oracle, where he gained in-depth knowledge of their licensing programs and sales practices. For the past 11 years, he has worked as a consultant, advising global enterprises on complex licensing challenges and large-scale contract negotiations.

    View all posts

Redress Compliance