Aqua supports CSPM in Oracle Cloud Infrastructure (OCI) accounts to help ensure the security and compliance of OCI resources.


TABLE OF CONTENTS


Getting Started

Connecting the Aqua to your OCI account is simple and straightforward, and takes about 5 minutes. CSPM connects to your account through the use of a user with read-only API access. Refer to our OCI setup guide for complete installation steps.


The Scanning Process

Once connected, CSPM will query various read-only APIs in your account to obtain information about the configuration of your infrastructure services. This information will be processed and analyzed by our security control plugins to produce a security report.


Example Findings

CSPM has hundreds of plugins, representing a variety of cloud security controls. Some example findings include:

  • Misconfigured compute instances and block storage volumes that do not have backups enabled
  • Object storage buckets that are exposed publicly
  • Network security groups that allow public access to sensitive services


Next Steps

To begin auditing your OCI accounts, simply register for an Aqua account and follow the connection process above.