Oracle Cloud Integration

Oracle Cloud is a comprehensive cloud computing platform and infrastructure offered by Oracle Corporation. It provides a variety of cloud services, including infrastructure as a service (IaaS), platform as a service (PaaS), software as a service (SaaS), and data as a service (DaaS).

How does this integration help Sprinto

The following integration enables Sprinto to ensure that your Oracle Cloud infrastructure services comply with the data security requirements of your chosen compliance framework. Sprinto integrates with your Oracle Cloud account to verify and configure the desired security settings. In case any configuration is absent, Sprinto maps the equivalent Sprinto check accordingly.

Sprinto checks for Oracle

Following are the Sprinto checks available for Oracle integration:

Sprinto check

Reference procedure

Infra entity should be classified

How to fix

Disk encryption should be enabled on storage

How to fix

VCN flow logs should be captured

How to fix

ATP database backup should be enabled

How to fix

ATP should be protected from direct internet traffic

How to fix

Oracle cloud access should be removed for offboarded user

How to fix

Oracle Cloud user should have MFA enabled

How to fix

User should be identified

How to fix

Rules for who can access critical systems should be configured

How to fix

User access to critical system should be valid

How to fix

Compute instance CPU utilization should be monitored

How to fix

CPU utilization of an ATP should be monitored

How to fix

Free space of an ATP should be monitored

How to fix

Compute instance should be protected from direct internet traffic

How to fix

Active connection count of a load balancer should be monitored

How to fix

Before you begin

Log in on Sprinto as administrator.
Ensure you have “Admin” access on the Oracle account you want to integrate.

Integrate Sprinto with Oracle Cloud

Follow the below steps to integrate Oracle Cloud on Sprinto:

Get the Tenancy OCID and Home Region from your Oracle Cloud account.
- Log in to your Oracle account using your credentials.
- Click on the profile icon at the top and copy the Tenancy ID for your Oracle Cloud account. For example, in the image below, Tenancy is sprintodev.
- On the Tenancy details page, copy the OCID and Home region details from the Tenancy information tab. We will need these details later to build integration on Sprinto.
Get the User OCID detail. Note: You need to create a new user on your Oracle account to get the OCID.
- Click on the profile icon at the top and select Identity Domain: Default.
- On Identity domain page, click Users, then click Create User.
- On Create user page, enter the First and Last name and the Email address.
- Select Auditors-Group permission, then click Create.
- Now, select the user you have created.
- Copy the user’s OCID from the User information tab. We will need this detail later to build integration on Sprinto.

Get the API fingerprint from the Oracle Cloud account.

On your created user page from step 2, click API Keys under Resources, and click Add API key.

On Add API key page, select Paste a public key, paste the below public key, and click Add.

Copy the API key fingerprint. We will need this detail to build integration on Sprinto.

Update policy statements on Oracle Cloud.

Navigate to Policies in your Oracle cloud account.
Select AuditPolicy from the policies list.
Click Edit Policy Statements under Statements.

On Edit Policy Statements page, select Advanced, and paste the below-mentioned policy statements, and click Save Changes.

Allow group Auditor-Group to inspect all-resources in tenancy
Allow group Auditor-Group to read buckets in tenancy
Allow group Auditor-Group to read file-family in tenancy
Allow group Auditor-Group to read network-security-groups in tenancy
Allow group Auditor-Group to read users in tenancy
Allow group Auditor-Group to use cloud-shell in tenancy
Allow group Auditor-Group to read dynamic-groups in tenancy
Allow group Auditor-Group to read tag-defaults in tenancy

Integrate Oracle Cloud on Sprinto.
- Go to Security Hub > Settings > Integration > Available, and click Connect next to Oracle Cloud.
- Read the on-screen instructions, and click Next.
- On the Integration page, enter the following details you copied from steps 1, 2, and 3 and click Connect.
  - Tenancy OCID
  - Home Region
  - User OCID
  - API Key finger print
Add Oracle Cloud as an Infrastructure service provider on Sprinto.
- Go to Security Hub > Infrastructure, and click + Add infra provider.
- On Choose infra provider page, click Add next to Oracle Cloud.
Add Oracle Cloud as a Critical system on Sprinto.
- Go to Security Hub > Access > Overview, and click + Add critical system.
- On Add Critical System page, select Oracle Cloud and click Add System.
- On Access overview page, select Oracle Cloud from the list.
- On the Summary page, click Configure Now next to the Oracle cloud account.
- On the Manage page, click Configure next to access validity.
- Choose one of the options to define valid users based on roles.

Final step

After completing Step 3, allow 15 to 20 minutes for Sprinto to finish the data syncing process. Sprinto may take a few hours to evaluate the synced data and activate relevant Sprinto checks.

If needed, go to Security Hub > Infrastructure and select your desired integrated Oracle infra service to review the pending Sprinto check.

If you need any assistance with integration, kindly get in touch with Sprinto check.

PreviousOpenVPN Integration NextOutreach Integration

Last updated 7 days ago