Introduction
This document describes the steps needed to setup the Blue Hexagon audit solution for OCI.
Step 1:
Log into your Oracle Cloud console and navigate to Administration > Tenancy Details.
Copy your Tenancy OCID and paste it in the file(say “bh_credentials.txt”)
...
Step 2:
Navigate to Identity > Users.
Click on Create User.
Enter "BlueHexagon", then enter "BlueHexagon API Access" in the description.
Click on Create.
...
Step 3:
Copy the User OCID and paste it in the file(“bh_credentials.txt”)
...
Step 4:
Click on “API Keys-->Add API Key-->Generate API Key” for BlueHexagon user.
...
Step 5:
Open the private key (oci_api_key.pem) in your preferred text editor and paste it in the file.
Copy the public key fingerprint and paste it in the file(“bh_credentials.txt”).
...
Step 6:
Navigate to Identity > Groups.
Click on Create Group.
Enter "SecurityAudit" in the Name field, then enter "BlueHexagon Security Audit Access" in the description.
Click on Submit.
...
Step 7:
Click on the SecurityAudit group in the Groups List and Add the BlueHexagon API User to the group.
Navigate to Identity > Policies.
Click on Create Policy.
Enter "SecurityAudit" in the Name field, then enter "BlueHexagon Security Audit Policy" in the description.
Copy and paste the following policy statements:
...
ALLOW GROUP SecurityAudit to READ audit-events in tenancy
...
Step 8:
Navigate to Identity > Compartments.
Select your root compartment or the compartment being audited.
Click on "Copy" by your Compartment OCID and paste it in the file.
...
Step 9:
Send the bh_credential.txt file.
...