Connect to Oracle
Last updated
Was this helpful?
Last updated
Was this helpful?
Oracle Cloud Infrastructure (OCI) is a comprehensive platform offering high-performance computing and a wide range of cloud services, designed for reliability, scalability, and security.
Integrating Finout with OCI allows you to efficiently manage your cloud resources, optimize spending, and gain valuable insights into your OCI cloud operations.
For official OCI documentation on these steps, refer to
Access permissions in Oracle are assigned to groups. Create a separate group for Finout to ensure access only to the necessary billing resources.
Go to the OCI navigation menu → Identity & Security → Domains → <Finout domain> → Groups (in the right-hand menu).
Click Create Group.
Fill in the Group Name and add some Description.
Click Create.
Assign a policy to the group for accessing cost reports. In OCI, group permissions are managed through policies. By assigning a policy to the Finout group, you ensure that all its members can access only what the group policies allow.
Go to the OCI navigation menu → Identity & Security → Policies.
Click Create policy.
Choose a name for the policy that clearly indicates its purpose for accessing cost reports.
In the policy builder box at the bottom of the screen, activate the Show manual editor button and enter the following statements:
Statement 1:
Important: The following statement is not an example. You need to run this statement exactly as it is shown below.
define tenancy usage-report as ocid1.tenancy.oc1..aaaaaaaaned4fkpkisbwjlr56u7cj63lf3wffbilvqknstgtvzub7vhqkggq
This specifies the tenancy for usage reports, which is in a bucket owned by Oracle.
Statement 2:
endorse group <group name> to read objects in tenancy usage-report
Replace <group name> with the name of the group created for Finout. If you want your own groups/users to access the cost reports as well, add another policy with the relevant <group name>.
Click Create.
Go to the OCI navigation menu → Identity & Security → Domains → Users.
Click Create User.
Fill in the name and email of the Finout user.
Click Create.
Generate an API key to enable Finout users to access the reporting bucket via the Oracle API key.
Create an API key pair in the OCI console to enable API signing for the Finout user:
Ensure an administrator user is logged into Oracle, as only administrators can perform these steps.
Navigate to Identity & Security → Domains → <Finout user domain> → Users, and click the Finout user to access their profile.
Navigate to the Resources section in the bottom left screen and select API keys.
Make sure that the Generate API key pair is chosen.
Click Download Private Key and save the key in a local directory.
Click Add.
A configuration is displayed. Click on the copy button below the text box and paste it into a local file editor (save for step 5).
In Finout, navigate to Settings > Cost Centers and click Add cost center. The Connect Accounts window appears.
In OCI, click Connect Now. The Connect to OCI window appears.
Fill the relevant fields from the "Configuration file preview" text box you copied in the previous step (Step 4). For “Private key data” you need to open the file and copy the entire file contents, including the key header.
Click Next. The cost center is created.
Assign the user to the new Finout group you created in by selecting the appropriate box under the Groups section.
Note: You can Edit the user capabilities and limit to only API keys.
For detailed instructions, refer to the official Oracle documentation .
Note: The Oracle offers alternative methods for generating the key. Ensure that you have the complete configuration details as outlined in the following step.
