Prerequisites for Generating Your Own Vault and Key
Before proceed with the environment creation, ensure to add the required policy to the tenancy.
Add the following policy to the tenancy.
define tenancy SAAS as ocid1.tenancy.oc1..aaaaaaaa6u6nllkls2lt7bht6rtkn6wr7ya7qaigactc7d5pmubpqdixskbq
define dynamic-group SAASDB as ocid1.dynamicgroup.oc1..aaaaaaaarbd43m3gpz2doxhdcol5kkslkdqvefhhccj4i3a4dqjid7amzydq
define dynamic-group SAASKA as ocid1.dynamicgroup.oc1..aaaaaaaa6gqppen3vfojuyt6mfbgzcatvvkqiux5qx3cogluuajgytulat6q
admit dynamic-group SAASDB of tenancy SAAS to use keys in compartment FSGBU_ERF
admit dynamic-group SAASKA of tenancy SAAS to read vaults in compartment FSGBU_ERF
admit dynamic-group SAASKA of tenancy SAAS to read keys in compartment FSGBU_ERFFor more information about policies, refer to creating a policy using IAM console.