18.4 Use OCI Vault Secret Credentials for Connections

Oracle Cloud Infrastructure (OCI) Vault lets you store and manage encryption keys to securely access resources. Data Transforms integrates with Oracle Cloud Infrastructure (OCI) Vault to allow the use of vault secret credentials to authenticate connections.

When you create a connection in Data Transforms you can use the vault secret to establish the connection. See Connections that support the use of OCI Vault for the list of supported connections.

To use OCI Vault secret in Data Transforms, do the following:

  1. Enable resource principal authentication from the source Autonomous database instance to provide access to the secret in the OCI Vault.
    begin
     DBMS_CLOUD_ADMIN.ENABLE_RESOURCE_PRINCIPAL;
     DBMS_CLOUD_ADMIN.ENABLE_RESOURCE_PRINCIPAL(username => ''&odiuser'');
end;

    See Enable Resource Principal to Access Oracle Cloud Infrastructure Resources for more information.

  2. Create a secret in OCI Vault to store the password of the target database user and set up a dynamic group to provide access to the secret in the OCI Vault. See Use Vault Secret Credentials with Oracle Cloud Infrastructure Vault for detailed information.
  3. Create a database link to a target database using the schema name and password. Data Transforms stores the target database password as a secret in OCI Vault. See Use Database Links with Autonomous AI Database for more information.
  4. Create a connection in Data Transforms and choose Use Secret Store to specify the password. See Work with Connections.

Connections that support the use of OCI Vault

  • Databases:
    • Amazon Aurora
    • Amazon EMR Hive
    • Amazon Redshift
    • Apache Hive
    • Apache Iceberg
    • Apache Impala
    • Apache Spark SQL
    • AWS S3
    • Azure Compute
    • Azure Data Lake Storage
    • Azure Reserved VM Instances
    • Azure SQL Database
    • Azure Synapse Analytics
    • Cassandra
    • Cloudera CDH Hive
    • Confluence Cloud
    • Delta Share
    • DocuSign
    • EnterpriseDB
    • Google BigQuery
    • Google Drive
    • Greenplum
    • Hortonworks Hive
    • Hypersonic SQL
    • IBM BigInsights
    • IBM DB2 Hosted
    • IBM DB2 UDB
    • IBM DB2 Warehouse
    • IBM DB2/400
    • Informix
    • MapR Hive
    • Microsoft SQL Server
    • MongoDB
    • MySQL
    • MySQL HeatWave
    • Netezza
    • Oracle
    • Oracle Object Storage
    • Pivotal HD
    • Pivotal HDB
    • PostgreSQL
    • SAP HANA
    • SAP NetWeaver
    • SAP Sybase ASE
    • SAP Sybase IQ
    • Snowflake
    • Sybase as Anywhere
    • Teradata
    • Teradata 17+
  • Applications
    • Aha!
    • Ahrefs
    • Azure Billing
    • Azure Resource Health
    • BigCommerce
    • DataStax
    • eBay
    • FinancialForce
    • FourSquare
    • Generic Rest
    • Generic Rest Config
    • GitHub
    • Google Ads
    • Google AdSense
    • Google Analytics
    • Google Calendar
    • Google Campaign Manager
    • Google Contacts
    • Google Search Ads 360
    • HubSpot
    • Jira
    • Klaviyo
    • Magento
    • Mailchimp
    • Marketo
    • Microsoft Dynamics 365
    • Microsoft SharePoint
    • Oracle Analytics Cloud
    • Oracle BI Cloud Connector
    • Oracle EBS
    • Oracle Financial Cloud
    • Oracle Fusion ERP
    • Oracle Fusion Sales
    • Oracle Fusion Service
    • Oracle Marketing Cloud
    • Oracle NetSuite
    • Oracle People Soft
    • Oracle Sales Cloud
    • Oracle SEIBEL
    • Oracle Service Cloud
    • PayPal
    • Qmetry
    • QuickBooks Online
    • QuickBooks Payments
    • Quora Ads
    • Sage
    • Salesforce Chatter
    • Salesforce.com
    • SAP BW/4HANA
    • SAP S/4HANA
    • Semrush
    • ServiceNow
    • Shopify
    • Square
    • Stripe
    • TeamCity
    • Tumblr
    • Veeva CRM
    • Volusion
    • Wistia
    • WooCommerce
    • WordPress
    • Workday
    • X
    • Xero
    • Yelp
    • Zendesk
    • Zoho CRM
    • Zoom
  • Services
    • Data Transforms
    • OCI Generative AI
    • Oracle GoldenGate - OCI

Parent topic: Reference