1. Prerequisites
In order to Add an Oracle SDK storage in MDSS, you will need an Oracle API Key including UserId, Fingerprint, Tenancy, Region and Private Key, and the bucket name
- From the left side menu, navigate to Storage units, click on Add Storage Unit and choose Oracle
- Choose the Oracle option
Give your storage a name so you can easily identify it later
There are two ways to connect:
- via the IAM role from the instance: please skip to using IAM Role for authentification
- using security credentials
Enter your User Id, Fingerprint, Tenancy, Region and Private Key
Enter the name of the bucket you wish to process with MetaDefender Storage Security.
If you wish to only process a particular folder enter the name or path of the folder in the Folder location field. Leave this field empty if you wish to process the entire bucket.
Select Continue in order to finish the process.
Where can I find the Credentials?
To generate the required credentials please follow these steps:
- Log in to Oracle Console and go to My Profile in the top right
- From there go to Token and Keys tab
- Click Add API Key
- Download the Private Key and Click Add
- After that all the required credentials will be generated and can be copied into MetaDefender Storage Security
Using IAM Role for authentication
Allow your MetaDefender Storage Security instance to use the Instance Principals to access Object Storage (buckets and objects) securely without embedding credentials.
- Create a Dynamic Group with at least the following matching rule
instance.id = <your instance id> - Create an IAM Policy with the following statements
- Allow dynamic-group <your-dynamic-group> to manage buckets in tenancy
- Allow dynamic-group <your-dynamic-group> to manage objects in tenancy
