Oracle Cloud Infrastructure
This document provides instructions for configuring Oracle Cloud Infrastructure (OCI) in order for the Vectra Context Integration to have the correct access to pull label contexts.
Prerequisites
Before configuring the OCI Context Integration in Vectra, you will need to have a group, policy, user, and tenancy OCID configured in OCI. Refer to the below instructions for more configuration information.
Create a group
In the top left menu click on "Identity & Security" and then click on "Domain" in the next menu to the right
If you have more than one domain, select your main domain. If not, skip this step (you'll just see the main domain).
On the next screen click "User Management" in the top bar.
Scroll down to the Groups section, and click on "Create Group".
Name the group
vectra-fusion-context-groupand give it a description of your choice. Then, click "Create" to create the group.
Create a policy
In the top left menu click on "Identity & Security" and then click on "Policies"
On the following screen click "Create Policy"
Complete the Policy Form as follows:
Name:
vectra-fusion-context-policyDescription:
Context Policy for Vectra FusionCompartment: Your root compartment (varies)
Toggle the manual editor, and then paste the following policy:
Click "Create" to complete the policy creation.
Create a User
In the top left menu click on "Identity & Security" and then click on "Domain" in the next menu to the right
If you have more than one domain, select your main domain. If not, skip this step (you'll just see the main domain).
On the next screen click "User Management" in the top bar.
Click "Create User".
Fill in the User creation form as follows:
First Name:
Vectra FusionLast Name:
Context UserUsername:
vectra-fusion-context-userToggle
Use the email address as the usernameoff.
Scroll down, and select the group
vectra-fusion-context-group. Click "Create" to create the user.
Obtain User and Tenancy OCIDs
On the page of the user we just configured click "Copy" under User Information to copy the User OCID as this is needed for the Vectra Fusion portal configuration.
Click on the user icon in the top right corner and select Tenancy from the menu
On the tenancy page click the copy button to obtain the tenancy OCID. This is also needed for the Vectra Fusion portal.
Also note the region as that will also be required in the Vectra Fusion portal.
Vectra Fusion Portal Steps
Navigate to Integrations (make sure you are on the Context tab) and click "Add Integration", then select Oracle Cloud Infrastructure
Authentication
The following fields are necessary for the integration to authenticate with Oracle Cloud Infrastructure.
User OCID
yes
User OCID to use for authentication to Oracle Cloud
Tenancy OCID
yes
Tenancy ocid to use for connecting to Oracle Cloud
Configuration
The following fields are specific to the Oracle integration.
Tag/Label Matches
Tag/Label matches represent the names of tags you use within the cloud provider. IE. A user might choose to tag all of their web servers with a tag "subsystem" that has a value of "web".
Retrieve the public key information
Once the integration has been created, return to edit the cloud provider you just created.
Make note of the public key and fingerprint. This information will be used in the post configuration step within COS.
Oracle Steps (Continued)
Add API Key to Oracle Cloud User
Navigate in the Oracle Cloud GUI to the user we just created under "Identity & Security" > "Users"
Select the
vectra-fusion-context-useruser you created.On the top menu click "API Keys".
Next click "Add API Key".
Select "Paste Public Key" in the "Add API Key" modal.
Then, paste the public key from the Vectra context integration into the text area.
Click the "Add" button to complete the configuration.
Click "Close" on the resulting window titled "Configuration File Preview".
The integration should now be functioning.
Last updated