How to Encrypt Object storage with Custom Keys

Step1: Navigation

Navigate to Menu-->Storage-->Object storage & Archive storage

Step2: Click Bucket

Go to Buckets and choose the specific Bucket where you want to change the key.

Step3: Click Assign

This bucket is managed by Oracle assigned key. We will change this key. Click on Assign & Choose the vault and keys.

For creation of vault and keys, please refer to my https://github.com/Nirvan-Pandey/OCI_DOC/wiki/17_Vault_Concept_In_OCI.

Step4: Error Occurrred.

Step5: Policy creation.

Create a policy to resolve this error. Navigate to Identity&Security-->Identity-->Policies-->Create Policy

allow service objectstorage-us-ashburn-1 to use keys in compartment NP_Compute

Policy is created.

Step6: Attempt to reassign key.

Now, Default encryption key have ben replaced with custom managed keys