CloudSploit For Oracle Cloud Infrastructure (OCI)

Cloud Provider Configuration

Log into your Oracle Cloud console and navigate to Administration > Tenancy Details.
Copy your Tenancy OCID and paste it in the index file.
Navigate to Identity > Users.
Click on Create User.
Enter "CloudSploit", then enter "CloudSploit API Access" in the description.
Click on Create.
Copy the User OCID and paste it in the index file.
Follow the steps to Generate an API Signing Key listed on Oracle's Cloud Doc(https://docs.cloud.oracle.com/iaas/Content/API/Concepts/apisigningkey.htm#How).
Open the public key (oci_api_key_public.pem) in your preferred text editor and copy the plain text (everything). Click on Add Public Key, then click on Add.
Copy the public key fingerprint and paste it in the index file.
Open the private key (oci_api_key.pem) in your preferred text editor and paste it in the index file.
Navigate to Identity > Groups.
Click on Create Group.
Enter "SecurityAudit" in the Name field, then enter "CloudSploit Security Audit Access" in the description.
Click on Submit.
Click on the SecurityAudit group in the Groups List and Add the CloudSploit API User to the group.
Navigate to Identity > Policies.
Click on Create Policy.
Enter "SecurityAudit" in the Name field, then enter "CloudSploit Security Audit Policy" in the description.
Copy and paste the following statement:
ALLOW GROUP SecurityAudit to READ all-resources in tenancy
Click on Create.
Navigate to Identity > Compartments.
Select your root compartment or the compartment being audited.
Click on "Copy" by your Compartment OCID.

In your Oracle Cloud Infrastructure Console, under Identity > Users:

You will need:

Private un-encrypted key: openssl genrsa -out ~/.oci/oci_api_key.pem 2048
Public Key: openssl rsa -pubout -in ~/.oci/oci_api_key.pem -out ~/.oci/oci_api_key_public.pem
Key Fingerprint: openssl rsa -pubout -outform DER -in ~/.oci/oci_api_key.pem | openssl md5 -c

Save the private un-encrypted key in this directory to run your scans