Creating a Private Endpoint

Create a private endpoint in Resource Manager.

Before You Begin

Gather the network information that you need:

Virtual cloud network (VCN) and subnet
The private endpoint connection is at the VCN level. If you have many subnets per VCN, you need to create only one private endpoint for that VCN. Ensure that security rules meet your requirements.
Network security groups (optional)
DNS zones (optional, for private Git servers)

For example, for a private Git server at https://privateGitServer.examplesub.exampledomain, create a DNS zone for examplesub.exampledomain.

Additionally:

Ensure that the subnet allows access to the private resource: Set up a security rule for ingress.
Ensure that the subnet has available IP addresses.
If no IP addresses are available in the specified subnet, then the work request for creating the private endpoint fails.
For private Git servers, import the certificates you want to use. See the GitHub and GitLab instructions.

Using a Terraform Configuration

Create a private endpoint by using a Terraform configuration.

To create a stack that creates a Resource Manager private endpoint, use the Resource Manager create private endpoint template.
For example Terraform configurations that use Resource Manager private endpoints, see Private endpoint Terraform configuration examples. Also, review Terraform Configurations for Resource Manager.

Add code to the Terraform configuration that creates a private endpoint.
For an example, see Example Usage (oci_resourcemanager_private_endpoint).
Create a stack that references this Terraform configuration.
Run an apply job on the stack.
A work request for creation runs, and then the private endpoint is created. You can now reference the private endpoint from any Terraform configuration or configuration source provider.

To create a private endpoint by using the Console, follow these steps.
1. On the Private endpoints list page, select Create private endpoint. If you need help finding the list page or the private endpoint, see Listing Private Endpoints.
2. In the Create private endpoint panel, enter a name and optional description for the private endpoint. Avoid entering confidential information.
3. Select the compartment that you want to store the private endpoint in.
4. Enter the following values:
  
  Virtual cloud network: The virtual cloud network (VCN) to use with the private endpoint. See VCNs and Subnets. To select a VCN in a different compartment, select Change Compartment.
  
  Subnet: The subnet to use with the private endpoint. See VCNs and Subnets. To select a subnet in a different compartment, select Change Compartment.
  
  Allow this private endpoint to be used with a configuration source provider: When enabled, allows use with configuration source providers (for example, private Git servers). If you enable this option, it can't be disabled after the endpoint is created.
  
  DNS zones: The DNS zones to use with the private endpoint. This field is displayed when Allow this private endpoint to be used with a configuration source provider is selected. For more information about DNS zones, see Public DNS.
  
  Network security groups: The network security groups (NSGs) to use with the private endpoint. To select a NSG in a different compartment, select Change Compartment.
5. (Optional) Add tags:
  
  To show tagging options, select Show advanced options.
  
  To add a defined tag, select the namespace and key, then enter a value.
  
  To add a free-form tag, enter a key and value.
6. Select Create.
The new private endpoint appears on the Private endpoints list page. While the work request for creation runs, the new private endpoint's status is Creating, and the new private endpoint's details page shows the work request in progress. When the work request reaches succeeded status, the new private endpoint's status is Active.
Use the oci resource-manager private-endpoint create command to create a private endpoint.
```
oci resource-manager private-endpoint create --compartment-id <compartment_ocid> --display-name <text> --subnet-id <subnet_ocid> --vcn-id <vcn_ocid>
```
For a complete list of parameters and values for CLI commands, see the Command Line Reference for Resource Manager.
Use the CreatePrivateEndpoint operation to create a private endpoint.

What's Next

To troubleshoot a failed work request for creation of a private endpoint, see Private Endpoint Work Request Fails.

Oracle Cloud Infrastructure Documentation Try Free Tier

Creating a Private Endpoint

Before You Begin 🔗

Using a Terraform Configuration 🔗

What's Next 🔗

Oracle Cloud Infrastructure Documentation
Try Free Tier

Before You Begin

Using a Terraform Configuration

What's Next