# Oracle Cloud Infrastructure

{% hint style="info" %}
This integration is currently in beta.
{% endhint %}

Connect OCI with Halo Security to automatically import cloud assets into your account.

## Set up the integration

1. Visit your *Settings → Integrations →* [Add](https://app.halosecurity.com/user/settings/integrations/add).
2. Add the Oracle Cloud integration.
3. Add a name for your integration.
4. Download the generated public key.
5. Follow the steps in the OCI Console.
6. Provide the following details:
   1. Tenancy ID (`ocid1.tenancy.oc1.xxx`)
   2. User ID (`ocid1.user.oc1.xxx`)
   3. Compartment ID (`ocid1.compartment.oc1.xxx`)
   4. Region (`us-phoenix-1`)

## In OCI Console

1. From your [OCI console](https://cloud.oracle.com/identity/domains/my-profile), click your profile icon in upper right.
2. Select **My Profile.**
3. Select **API Keys** from left menu.
4. Click **Add API Key.**
5. Select **Choose public key file** and upload the public key provided by Halo Security.
6. Click **Add.**

## OCI Policy

**Option 1** - Allow full read access. This ensures that any improvements to the integration are supported.

```
allow group <group_name> to inspect all-resources in tenancy
```

**Option 2** - Allow specific read access to the currently required features.

```
allow group <group_name> to inspect compartments in tenancy
allow group <group_name> to inspect dns-zones in tenancy
allow group <group_name> to inspect dns-records in tenancy	
allow group <group_name> to inspect instances in tenancy
allow group <group_name> to inspect vnics in tenancy
allow group <group_name> to inspect vnic-attachments in tenancy
allow group <group_name> to inspect load-balancers in tenancy	
allow group <group_name> to read public-ips in tenancy	
```

## Using the integration

Now that your account is integrated with OCI, you may run the integration and select whether you would like it to run automatically.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.halosecurity.com/docs/integrations/discovery-integrations/oci.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.