# Oracle Cloud Infrastructure

{% hint style="info" %}
This integration is currently in beta.
{% endhint %}

Connect OCI with Halo Security to automatically import cloud assets into your account.

## Set up the integration

1. Visit your *Settings → Integrations →* [Add](https://app.halosecurity.com/user/settings/integrations/add).
2. Add the Oracle Cloud integration.
3. Add a name for your integration.
4. Download the generated public key.
5. Follow the steps in the OCI Console.
6. Provide the following details:
   1. Tenancy ID (`ocid1.tenancy.oc1.xxx`)
   2. User ID (`ocid1.user.oc1.xxx`)
   3. Compartment ID (`ocid1.compartment.oc1.xxx`)
   4. Region (`us-phoenix-1`)

## In OCI Console

1. From your [OCI console](https://cloud.oracle.com/identity/domains/my-profile), click your profile icon in upper right.
2. Select **My Profile.**
3. Select **API Keys** from left menu.
4. Click **Add API Key.**
5. Select **Choose public key file** and upload the public key provided by Halo Security.
6. Click **Add.**

## OCI Policy

**Option 1** - Allow full read access. This ensures that any improvements to the integration are supported.

```
allow group <group_name> to inspect all-resources in tenancy
```

**Option 2** - Allow specific read access to the currently required features.

```
allow group <group_name> to inspect compartments in tenancy
allow group <group_name> to inspect dns-zones in tenancy
allow group <group_name> to inspect dns-records in tenancy	
allow group <group_name> to inspect instances in tenancy
allow group <group_name> to inspect vnics in tenancy
allow group <group_name> to inspect vnic-attachments in tenancy
allow group <group_name> to inspect load-balancers in tenancy	
allow group <group_name> to read public-ips in tenancy	
```

## Using the integration

Now that your account is integrated with OCI, you may run the integration and select whether you would like it to run automatically.