steampipe plugin install oci

Table: oci_dns_tsig_key - Query OCI DNS TSIG Keys using SQL

DNS Transaction Signature (TSIG) is a resource in Oracle Cloud Infrastructure (OCI) that provides enhanced security for DNS operations. TSIG keys are used to authenticate DNS messages and prevent unauthorized DNS operations. They are crucial for maintaining the integrity and security of DNS data within OCI.

Table Usage Guide

The oci_dns_tsig_key table offers insights into DNS Transaction Signature (TSIG) Keys within OCI DNS. As a security analyst, you can explore key-specific details through this table, including algorithm types, secret keys, and associated metadata. Utilize it to uncover information about TSIG keys, such as those with specific algorithms, the lifecycle state of keys, and the time of their creation.

Examples

Basic info

Assess the elements within your Oracle Cloud Infrastructure by pinpointing specific locations where certain security keys were created and their current lifecycle state. This aids in understanding the status and age of your security measures.

select
id,
name,
lifecycle_state,
time_created
from
oci_dns_tsig_key;
select
id,
name,
lifecycle_state,
time_created
from
oci_dns_tsig_key;

List TSIG keys which are not active

Explore TSIG keys that are not currently active. This can be useful in identifying keys that may be expired or unused, aiding in the maintenance and security of your DNS system.

select
name,
id,
lifecycle_state
from
oci_dns_tsig_key
where
lifecycle_state <> 'ACTIVE';
select
name,
id,
lifecycle_state
from
oci_dns_tsig_key
where
lifecycle_state <> 'ACTIVE';

Schema for oci_dns_tsig_key

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
algorithmtextTSIG key algorithms are encoded as domain names, but most consist of only one non-empty label, which is not required to be explicitly absolute.
compartment_idtext=The OCID of the compartment in Tenant in which the resource is located.
defined_tagsjsonbDefined tags for resource. Defined tags are set up in your tenancy by an administrator. Only users granted permission to work with the defined tags can apply them to resources.
freeform_tagsjsonbFree-form tags for resource. This tags can be applied by any user with permissions on the resource.
idtext=The OCID of the resource.
lifecycle_statetext=The current state of the resource.
nametext=A globally unique domain name identifying the key for a given pair of hosts.
secrettextA base64 string encoding the binary shared secret.
selftextThe canonical absolute URL of the resource.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
tagsjsonbA map of tags for the resource.
tenant_idtext=, !=, ~~, ~~*, !~~, !~~*The OCID of the Tenant in which the resource is located.
tenant_nametextThe name of the Tenant in which the resource is located.
time_createdtimestamp with time zoneThe date and time the resource was created.
time_updatedtimestamp with time zoneThe date and time the resource was last updated.
titletextTitle of the resource.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- oci

You can pass the configuration to the command with the --config argument:

steampipe_export_oci --config '<your_config>' oci_dns_tsig_key