Manage Master Encryption Keys in Oracle Key Vault
Autonomous Database supports customer-managed Transparent Data Encryption (TDE) keys that reside in Oracle Key Vault (OKV).
- Prerequisites to Use Customer-Managed Encryption Keys in Oracle Key Vault
Describes the prerequisite steps to use customer-managed master encryption keys that reside in Oracle Key Vault (OKV) on Autonomous Database. - Use Customer-Managed Encryption Keys on Autonomous Database with Oracle Key Vault
Shows the steps to encrypt your Autonomous Database using customer-managed master encryption keys that reside in Oracle Key Vault (OKV).
Parent topic: Manage Encryption Keys on Autonomous Database
Prerequisites to Use Customer-Managed Encryption Keys in Oracle Key Vault
Describes the prerequisite steps to use customer-managed master encryption keys that reside in Oracle Key Vault (OKV) on Autonomous Database.
-
The Autonomous Database instance must use private endpoints.
-
Autonomous Database supports OKV instances that are in private networks and are accessible from the same network where the Autonomous Database resides.
See VCN and Subnet Management and Oracle Key Vault Installation and Configuration, for more information.
- Cross-tenancy access, where the Autonomous Database instance and OKV are in different tenancies, is not supported.
- OKV is not supported in cross-region standbys.
- OKV is not supported in refreshable clones.
Follow these steps:
Parent topic: Manage Master Encryption Keys in Oracle Key Vault
Use Customer-Managed Encryption Keys on Autonomous Database with Oracle Key Vault
Shows the steps to encrypt your Autonomous Database using customer-managed master encryption keys that reside in Oracle Key Vault (OKV).
Follow these steps:
When the save completes successfully, encryption settings for the Autonomous Database instance are updated to show Customer-managed key (Oracle Key Vault (OKV)) and the work request state shows succeeded.
See Notes for Using Customer-Managed Keys with Autonomous Database for more information.
Parent topic: Manage Master Encryption Keys in Oracle Key Vault