Securing Health Checks
This topic provides security information and recommendations for Health Checks.
Security Responsibilities
To use Health Checks securely, learn about your security and compliance responsibilities.
Oracle is responsible for the following security requirements:
- Physical Security: Oracle is responsible for protecting the global infrastructure that runs all services offered in Oracle Cloud Infrastructure. This infrastructure consists of the hardware, software, networking, and facilities that run Oracle Cloud Infrastructure services.
Your security responsibilities are described on this page, which include the following areas:
- Access Control: Limit privileges as much as possible. Users should be given only the access necessary to perform their work.
Initial Security Tasks
Use this checklist to identify the tasks you perform to secure Health Checks in a new Oracle Cloud Infrastructure tenancy.
Task | More Information |
---|---|
Use IAM policies to grant access to users and resources | IAM Policies |
Add security lists where needed so that Health Checks can access resources. | Network Security |
IAM Policies
Use policies to limit access to Health Checks.
A policy specifies who can access Oracle Cloud Infrastructure resources and how. For more information, see How Policies Work.
Assign a group the least privileges that are required to perform their responsibilities. Each policy has a verb that describes what actions the group is allowed to do. From the least amount of access to the most, the available verbs are: inspect
, read
, use
, and manage
.
For more information about Health Checks policies, see Details for Health Checks (IAM with identity domains) and Details for Health Checks (IAM without identity domains).
Create this policy to allow all users in the tenancy to manage Health Checks resources.
Allow any-user to manage health-check-family in tenancy
Create this policy to allow all users in the ABC
compartment to manage Health Checks resources.
Allow any-user to manage health-check-family in compartment ABC
Create this policy to allow the HCUsers
group in the ABC
compartment to manage Health Checks resources.
Allow group HCUsers to manage health-check-family in compartment <Compartment Name>
For more information about Health Checks policies and to view more examples, see Details for Health Checks.
Network Security
Secure network access to your resources in Health Checks.
Use security lists , network security groups , or a combination of both to control packet-level traffic in and out of the resources in your VCN (virtual cloud network) . See Access and Security.
For monitoring by the Health Checks service, resources must be accessible from the public internet. You might need to set up security lists. See Securing Networking.