About Installing and Configuring Oracle Key Vault
Oracle Key Vault Product Management can provide a link from which you can download an image and import it to your Compute Cloud@Customer. Once you have access to the Oracle Key Vault image, follow the steps in this article to install it.
Download the Oracle Key Vault Image From Marketplace
An Oracle Key Vault image for Compute Cloud@Customer is available on OCI Marketplace.
- Log in to your OCI account and go to OCI Marketplace.
- On the filters option, select Compute Cloud@Customer or Roving Edge compatible images.
- Select Oracle Key Vault image for Compute Cloud@Customer.
Download and Import Oracle Key Vault
To download and import Oracle Key Vault, use this procedure.
Create an Oracle Key Vault Instance
Once the custom image becomes available, use this procedure to create the Key Vault instance.
Configure the Oracle Key Vault Instance
Once the system has booted up, you must go through the post install steps to complete the initial configuration. These steps include setting the initial server password and completing the post-installation configuration. To complete these tasks, you'll need the following:
- The IP address or fully-qualified domain name (FQDN) of a
Linux or Mac system to perform the configuration from. This can be
any Linux server on the same network as your OKV server(s) or a
laptop. This example uses c3bastion.
Note:
Take note of the external and internal IP addresses assigned to the nodes you wish to add to your cluster. We will need both sets of addresses. - The IP address or FQDN of the OKV server(s) to be configured. This example uses 10.122.56.38/172.20.0.33 and 10.122.56.29/172.20.0.21.
Set Up the Initial Server Password
The first instance configuration task is to set up the initial server password. Do this from the command line
opc
user, a temporary
user from which you set the root and support user passwords. Once you
successfully set these passwords, the opc
user will be
deleted and login to the Oracle Key Vault instance by using SSH will be turned off. You can re-enable login to the
Oracle Key Vault instance by using SSH from the Oracle Key Vault management console and log in as the support user.
Complete Post-Installation Configuration
Once you set the initial server passwords, log in via the Oracle Key Vault GUI by using the root password you created in the previous step and complete the post install configuration. This includes performing the user setup, system administrator setup, Time (NTP), and Domain Name System (DNS) setups. Then save this information.