Vault - Secrets

Creating the Vault's Structure

1. This page assumes that the vault already exists. If not, see Create a New Vault

1. We assume that the master key already exists. To create a key, see Create a New Key

Store an IDCS Client Secret in the Vault

1. Sign in to your Oracle Cloud account as an administrator.
2. In Oracle Cloud Infrastructure Console, navigate to Identity & Security, and click Domains.
3. Click the name of the identity domain, and click Integrated applications.
4. Search, view the details of the application (for example, inception_dev_01) and fetch client secret value.

1. To store client secret in vault’s secret, navigate to vault page (for example, inception-vault).

1. Navigate to Secrets tab, click ‘Create Secret’ button

1. Enter
   1. Compartment: for example, inception-compartment
   2. Name: for example, inception_confidential_app_dev
   3. Description
   4. Encryption Key Compartment: for example, inception-compartment
   5. Encryption Key: pick an existing master key, for example, inception_mk
   6. Manual secret generation
   7. Secret Type Template: Plain-Text
   8. Secret Contents: \<enter the IDCS app client secret>
   9. Secret rotation: \<keep default>

With this, you will have the IDCS client Secret stored (and accessible) in the Vault. Use similar steps for other secrets like ADB credentials or API keys needed in recipes/MCP servers.

Return home