Deploying the External Key Manager

Learn about the requirements for integrating your third-party external key manager with the OCI External Key Management Service (EKMS).

To onboard with OCI EKMS, you must first set up (deploy) a third-party KMS. You can use any third-party KMS that has implemented the OCI External KMS Vendor API. An example of a third-party KMS that has implemented the API is Thales CipherTrust Manager (CM). See your vendor's documentation for instructions on deploying the third-party KMS.