...
Before you begin: Add Aquila Clouds user ID (for instance, aquilauser) to the group to be endorsed in tenancy.
Log in to the Oracle Cloud console with the user role that has permissions to manage user accounts.
Create new user group for users <groupname>
Create LOCAL USER (e.g. “aquilauser“) and add to above group where we will apply policies in next steps
Code Block (LOCAL USER A non-federated user. In other words, someone who signs in to use the Oracle Cloud Infrastructure Console with a login and password created in Oracle Cloud Infrastructure.)Navigate to Account Management.
Open the Cost and Usage Reports page.
Create a policy with the following two statements:
| Code Block |
|---|
define tenancy usage-report as ocid1.tenancy.oc1.. |
...
aaaaaaaaned4fkpkisbwjlr56u7cj63lf3wffbilvqknstgtvzub7vhqkggq endorse group |
...
groupname to read objects in tenancy usage-report allow group groupname to read all-resources in tenancy allow group groupname to read instance-family in tenancy allow group groupname to read volume-family in tenancy allow group groupname to read compartments in tenancy allow group groupname to read metrics in tenancy allow group groupname to manage instance-family in tenancy allow group groupname to manage volume-family in tenancy |
<group> should be the one that includes the Aquila Clouds user ID (aquilauser).
Navigate to Identity > Users tab.
In the API Keys tab, click Add API.
Select Generate API Key Pair.
Click Download Private Key.
In the User Information tab, click View Configuration File.
Save the configuration file information that is required for configuring Oracle Cloud in Aquila Clouds.
Adding an Oracle Cloud environment to Aquila Clouds
...
OCI Region: To identify the region of master tenancy or root.
OCI Tenant OCID: To identify the master tenancy OCID. For instance, a sample Tenant OCID is as follows:
ocid1.tenancy.oc1..sampleforocidaabu5gh6ppmmqbejiui34sjqnxtlctz3un4dvcntxdzkgdqOCI User OCID: To identify user’s OCID. For instance, a sample User OCID is as follows:
ocid1.user.oc1..sampleforuserociaaaawprueh4b5v5xqx2bybpe4en3vnlmdppqn3frnwqOCI Public Key Fingerprint: To identify the fingerprint generated after uploading the API Key for the user (This is the public key from the key pair).
OCI Private Key: Content of the private key file (encrypted Encrypted and password protected if you are importing a password protected private key. By default, the private key generated from OCI console is not password protected).
OCI Private Key Passphrase: If not specified separately, it is the password of the Aquila Cloud user ID registered in Oracle Cloudyou can keep it blank.
Adding an Oracle Cloud environment to Aquila Clouds
On the side navigation bar, select Administration tab.
On the Administration tab, click Environments.
On the Environments page, click Add.
On the Add Environment page, toggle on Active.
In the Environment Type group, select Oracle Cloud.
In the Name of the environment, type the name of Oracle Cloud environment.
Enter the following details for the connection parameters:
Bill as Master Account Level: Toggle to set this as master account.
OCI Region: Type the OCI region for the Oracle Cloud.
OCI Tenant OCID: Type the OCI Tenant ID.
OCI User OCID: Type the OCI user ID.
OCI Public Key Fingerprint: Type the OCI Public Key Fingerprint.
OCI Private Key: Type the OCI Private Key.
OCI Private Key Passphrase (Optional): Type the OCI Private Key Passphrase.
Click Apply.
Review the environment details and click Do you wish to confirm?. Oracle Cloud environment is configured in Aquila Clouds. You can start monitoring and managing Oracle Cloud resources from Aquila Clouds platform according to the permissions defined in Oracle Cloud environment.