turbot/oci

steampipe plugin install ocisteampipe plugin install oci
oci_apigateway_apioci_autoscaling_auto_scaling_configurationoci_budget_alert_ruleoci_budget_budgetoci_cloud_guard_configurationoci_cloud_guard_detector_recipeoci_cloud_guard_managed_listoci_cloud_guard_responder_recipeoci_cloud_guard_targetoci_core_block_volume_replicaoci_core_boot_volumeoci_core_boot_volume_attachmentoci_core_boot_volume_backupoci_core_boot_volume_metric_read_opsoci_core_boot_volume_metric_read_ops_dailyoci_core_boot_volume_metric_read_ops_hourlyoci_core_boot_volume_metric_write_opsoci_core_boot_volume_metric_write_ops_dailyoci_core_boot_volume_metric_write_ops_hourlyoci_core_dhcp_optionsoci_core_drgoci_core_imageoci_core_instanceoci_core_instance_metric_cpu_utilizationoci_core_instance_metric_cpu_utilization_dailyoci_core_instance_metric_cpu_utilization_hourlyoci_core_internet_gatewayoci_core_local_peering_gatewayoci_core_nat_gatewayoci_core_network_load_balanceroci_core_network_security_groupoci_core_public_ipoci_core_route_tableoci_core_security_listoci_core_service_gatewayoci_core_subnetoci_core_vcnoci_core_volumeoci_core_volume_attachmentoci_core_volume_backupoci_core_volume_backup_policyoci_database_autonomous_databaseoci_dns_rrsetoci_dns_tsig_keyoci_dns_zoneoci_events_ruleoci_file_storage_file_systemoci_file_storage_snapshotoci_functions_applicationoci_identity_api_keyoci_identity_auth_tokenoci_identity_authentication_policyoci_identity_availability_domainoci_identity_compartmentoci_identity_customer_secret_keyoci_identity_dynamic_groupoci_identity_groupoci_identity_network_sourceoci_identity_policyoci_identity_tag_defaultoci_identity_tag_namespaceoci_identity_tenancyoci_identity_useroci_kms_keyoci_kms_key_versionoci_kms_vaultoci_logging_logoci_logging_log_groupoci_mysql_backupoci_mysql_channeloci_mysql_db_systemoci_nosql_tableoci_nosql_table_metric_read_throttle_countoci_nosql_table_metric_read_throttle_count_dailyoci_nosql_table_metric_read_throttle_count_hourlyoci_nosql_table_metric_storage_utilizationoci_nosql_table_metric_storage_utilization_dailyoci_nosql_table_metric_storage_utilization_hourlyoci_nosql_table_metric_write_throttle_countoci_nosql_table_metric_write_throttle_count_dailyoci_nosql_table_metric_write_throttle_count_hourlyoci_objectstorage_bucketoci_ons_notification_topicoci_ons_subscriptionoci_region

Table: oci_kms_key

Oracle Cloud Infrastructure Key Management is a managed service that enables you to manage and control AES symmetric keys used to encrypt your data-at-rest.

Examples

Basic info

select
id,
name,
lifecycle_state,
time_created,
vault_name
from
oci_kms_key;

List keys that are not enabled

select
id,
name,
lifecycle_state,
vault_name
from
oci_kms_key
where
lifecycle_state <> 'ENABLED';

List keys older than 365 days

select
id,
name,
lifecycle_state,
vault_name
from
oci_kms_key
where
time_created <= (current_date - interval '365' day)
order by
time_created;

.inspect oci_kms_key

OCI KMS Key

NameTypeDescription
algorithmtextThe algorithm used by a key's key versions to encrypt or decrypt.
compartment_idtextThe OCID of the compartment in Tenant in which the resource is located.
current_key_versiontextThe OCID of the key version used in cryptographic operations.
curve_idtextSupported curve Ids for ECDSA keys.
defined_tagsjsonbDefined tags for resource. Defined tags are set up in your tenancy by an administrator. Only users granted permission to work with the defined tags can apply them to resources.
freeform_tagsjsonbFree-form tags for resource. This tags can be applied by any user with permissions on the resource.
idtextThe OCID of the key.
lengthbigintThe length of the key.
lifecycle_statetextThe key's current lifecycle state.
management_endpointtextThe service endpoint to perform management operations against.
nametextA user-friendly name of the key. Does not have to be unique, and it's changeable.
protection_modetextThe key's protection mode indicates how the key persists and where cryptographic operations that use the key are performed.
regiontextThe OCI region in which the resource is located.
restored_from_key_idtextThe OCID of the key from which this key was restored.
tagsjsonbA map of tags for the resource.
tenant_idtextThe OCID of the Tenant in which the resource is located.
time_createdtimestamp without time zoneThe date and time the key was created.
time_of_deletiontimestamp without time zoneAn optional property indicating when to delete the key.
titletextTitle of the resource.
vault_idtextThe OCID of the vault that contains the key.
vault_nametextThe display name of the vault that contains the key.