Docs

Oracle Cloud Infrastructure

Suggest Edits

This document provides instructions for configuring Oracle Cloud Infrastructure (OCI) in order for the Netography Context Integration to have the correct access to pull label contexts.

Prerequisites

Before configuring the OCI Context Integration in Netography, you will need to have a group, policy, user, and tenancy OCID configured in OCI. Refer to the below instructions for more configuration information.

Create a group

  • In the top left menu click on "Identity & Security" and then click on "Groups" in the next menu to the right
  • On the next screen click "Create Group" (#1 below)
  • Fill out the Name and Description of the new group (#2 and #3 below)
  • Finally click "Create" to create your group

Create a policy

  • In the top left menu click on "Identity & Security" and then click on "Policies"

  • On the following screen click "Create Policy"

  • Fill out the Name and Description fields (#1 and #2 below)

  • Select the desired compartment. In this case we just allow it to root. (#3 below)

  • Toggle the manual editor to the on position (#4 below)

  • Paste the policy (from code block below) into the text area (#5 below)

  • Click create to complete the policy creation (#6 below)

    allow group <your group name> to read virtual-network-family in tenancy
allow group <your group name> to read instance-family in tenancy

Create a User

  • In the top left menu click on "Identity & Security" and then click on "Users"
  • Click "Create User" (#1 below).
  • Select the "IAM User" at the top (#1 below)
  • Fill in the Name and Description for the user (#2 and #3 below)
  • Click "Create" to complete (#4 below)
  • This puts you on the user screen where you click "Add User to Group" (#1 below)
  • This brings up a box that allows you to choose a group and click "Add" (#2 and #3 below)

Obtain User and Tenancy OCIDs

  • On the page of the user we just configured click "Copy" under User Information to copy the User OCID as this is needed for the Netography portal configuration.
  • Click on the user icon in the top right corner and select Tenancy from the menu
  • On the tenancy page click the copy button to obtain the tenancy OCID. This is also needed for the Netography portal.
  • Also note the region as that will also be required in the Netography portal.

Netography Portal Steps

Navigate to Integrations (make sure you are on the Context tab) and click "Add Integration", then select Oracle Cloud Infrastructure

Configuration

The following fields are specific to the Oracle integration.

FieldRequiredDescriptionExample
Tag/Label MatchesTag/Label matches represent the names of tags you use within the cloud provider. IE. A user might choose to tag all of their web servers with a tag "subsystem" that has a value of "web".

Authentication

The following fields are necessary for the integration to authenticate with Oracle Cloud Infrastructure.

FieldRequiredDescription
User OCIDyesUser OCID to use for authentication to Oracle Cloud
Tenancy OCIDyesTenancy ocid to use for connecting to Oracle Cloud

Retrieve the public key information

Once the integration has been created, return to edit the cloud provider you just created.

Make note of the public key and fingerprint. This information will be used in the post configuration step within COS.

Oracle Steps (Continued)

Add API Key to Oracle Cloud User

  • Navigate in the Oracle Cloud GUI to the user we just created under "Identity & Security" > "Users"
  • Then select the user you created.
  • On the bottom left menu click "API Keys" (#1 below).
  • Next click "Add API Key" (#2 below).
  • Select "Paste Public Key" in the "Add API Key" modal (#3 below).
  • Paste the public key from the Netography context integration into the text area (#4 below).
  • Click the "Add" button to complete the configuration (#5 below).
  • Click "Close" on the resulting window titled "Configuration File Preview".

The integration should now be functioning.

Updated about 1 year ago