Manage Master Encryption Keys in OCI Vault
If your organization's security policies require customer-managed encryption keys, you can configure Autonomous AI Database to use an Oracle Cloud Infrastructure Vault master encryption key. With customer-managed master encryption keys, Autonomous AI Database uses the master encryption key to generate the TDE master key.
- About Customer-Managed Keys on Autonomous AI Database in OCI Vault
Using customer-managed encryption keys on Autonomous AI Database in Oracle Cloud Infrastructure (OCI) Vault involves creating a master key in your OCI Vault and configuring your Autonomous AI Database instance to use encryption keys in the OCI Vault. - Prerequisites to Use Customer-Managed Encryption Keys on Autonomous AI Database in OCI Vault
Perform these prerequisite steps to use customer-managed keys on Autonomous AI Database in OCI Vault: - Use Customer-Managed Encryption Keys with Vault Located in Local Tenancy
Shows the steps to select customer-managed master encryption keys on Autonomous AI Database. If you are using customer-managed master encryption keys, follow these steps to rotate the master keys. - Use Customer-Managed Encryption Key Located in a Remote Tenancy
Shows the steps to select customer-managed master encryption keys from a Vault on a remote tenancy. - Rotate Customer-Managed Encryption Keys on Autonomous AI Database in OCI Vault
Describes how to rotate customer-managed encryption keys on Autonomous AI Database in OCI Vault.
Parent topic: Manage Encryption Keys on Autonomous AI Database