You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: security/security-design/fn-datasafe-dbaudit-to-oci-logging/README.md
+8-3Lines changed: 8 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,4 +1,4 @@
1
-
# Data Safe Audit DB to OCI Logging
1
+
# Data Safe Audit Database to OCI Logging
2
2
3
3
Owner: Fabrizio Zarri
4
4
@@ -13,15 +13,15 @@ From OCI Logging Data Safe DB Audit Logs, can be send to OCI Logging Analytics,
13
13
14
14
## Prerequisites
15
15
16
-
- Configure Data Safe to get DB Audit Events from Oracle DataBase.
16
+
- Configure Data Safe to get Database Audit Events from Oracle DataBase.
17
17
18
18
- Configure OCI Registry username (your OCI username) and OCI Registry user password (your OCI user authtoken), See [Generating an Auth Token to Enable Login to Oracle Cloud Infrastructure Registry](https://docs.oracle.com/en-us/iaas/Content/Functions/Tasks/functionsgenerateauthtokens.htm)
19
19
20
20
- Create and/or Check IAM Policies to permit Oracle Cloud Infrastructure Registry username to push function image in OCI Registry. See [Policies to Control Repository Access](https://docs.oracle.com/en-us/iaas/Content/Registry/Concepts/registrypolicyrepoaccess.htm)
21
21
22
22
- Permission to `manage` the following types of resources in your Oracle Cloud Infrastructure tenancy: `IAM policies`, `Dynamic Group`, `vcns`, `services-gateways`, `route-tables`, `security-lists`, `subnets`, `functions`, `Monitor Alarms`, and `Notifications`.
23
23
24
-
- Quota to create the following resources: 1 VCN, 1 subnets, 1 Service Gateway, 1 route rules, 1 function, 1 dynamic group, 1 policy in root compartment, 1 Monitor Alarm, and 1 Notification Subscription.
24
+
- Quota to create the following resources: 1 VCN, 1 subnets, 1 Service Gateway, 1 route rule, 1 function, 1 dynamic group, 1 policy in root compartment, 1 Monitor Alarm, and 1 Notification Subscription.
25
25
26
26
If you don't have the required permissions and quota, contact your tenancy administrator. See [Policy Reference](https://docs.cloud.oracle.com/en-us/iaas/Content/Identity/Reference/policyreference.htm), [Service Limits](https://docs.cloud.oracle.com/en-us/iaas/Content/General/Concepts/servicelimits.htm), [Compartment Quotas](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/resourcequotas.htm).
Please note that the `terraform.tfvars` file will include sensitive information and needs to be protected from unauthorized usage.
116
+
115
117
### Create the Resources
116
118
Run the following commands:
117
119
@@ -133,6 +135,9 @@ When you no longer need the deployment, you can run this command to destroy the
133
135
134
136
If there is error in destroying the object storage bucket, manually delete the bucket and run "terraform destroy" again.
135
137
138
+
### Test Environment
139
+
We tested the terraform script in [Oracle Linux Cloud Developer Image](https://docs.oracle.com/en-us/iaas/oracle-linux/developer/index.htm) and Oracle Resource Manager
0 commit comments