Oracle Cloud Infrastructure (OCI)
SailPoint Entro connects to your Oracle Cloud Infrastructure (OCI) tenancy to discover, monitor, and analyze non-human identities and their permissions. This integration helps security teams gain visibility into OCI credentials and prevent lateral movement or unauthorized access.
Navigation Path
Management → Accounts & Integrations → Add New Account (top right) → Oracle Cloud Infrastructure
Purpose
The OCI integration ingests IAM metadata to identify:
-
IAM User API keys.
-
Lifecycle risks on API Keys.
-
Relationships between IAM users and cloud resources.
Architecture
+-----------------------+
| Entro Console |
| (Control Plane) |
+-----------+-----------+
|
| HTTPS / TLS 1.3 (OCI API)
|
V
+-----------+-----------+
| Oracle Cloud (OCI) |
| - Domains Service |
+-----------------------+
Security Model
-
SailPoint Entro connects using a read-only ACL policy
-
No secret values or credentials are ever extracted
-
All tokens and policies are encrypted using AES-256
-
All communication occurs via HTTPS/TLS 1.2+
-
Integration complies with SOC 2 Type II, ISO 27001, and GDPR