Provisioning enterprise-scale infrastructure manually on Oracle Cloud Infrastructure (OCI) can be a time-consuming and error-prone process. Engineers often have to manage large numbers of resource configurations while maintaining consistency across environments.
Even with Terraform (IaC) managing large volumes of input variables across multiple modules can still introduce significant overhead.
The CD3 Automation Toolkit simplifies this by providing a structured and scalable approach to infrastructure provisioning, bridging the gap between design and deployment.
What is CD3?
CD3 stands for Cloud Deployment Design Deliverable.
The CD3 Automation toolkit converts detailed OCI design specifications captured in Excel templates into production-ready modular Terraform code.
It can also Reverse engineer existing OCI infrastructure back into Excel and IaC(terraform)
The toolkit integrates with OCI DevOps Git service and Jenkins pipelines, enabling seamless CI/CD workflows.
CD3 also extends its support to Oracle DB@Multicloud
How CD3 works?
OCI resources such as VCNs, Subnets, Compute Instances, Policies etc., are defined using structured CD3 Excel templates.
CD3 converts these inputs into .tfvars files, which Terraform then uses to generate plans and provision resources in OCI.
Existing infrastructure can also be exported back to Excel and Terraform.
AI Assisted Analysis
CD3 offers an optional AI-assisted analysis feature to evaluate the generated Terraform plans before deployment.
It helps identify security risks, misconfigurations, and best practice violations early, reducing failures and improving security posture.
CD3 Workflows
The tool kit supports two main workflows:
- Create & Manage Resources (Greenfield Workflow): Use this workflow when setting up a new OCI tenancy or creating new resources.
- Export & Manage Resources (Non-Greenfield Workflow): Use this workflow to manage existing OCI resources not initially created with CD3.
Benefits of CD3
- Faster, low-effort infrastructure provisioning
- Scalable, consistent, and reusable deployments
- Self-service visibility of OCI resources through Excel templates
- Secure deployments using CIS-compliant templates and built-in compliance checks
- Enables integration with CI/CD pipelines
- Containerized and platform-agnostic execution
Supported services
CD3 Automation Toolkit supports the following services for creation and export with more services added regularly.
OCI:
| OCI services | Details |
| Identity and Access Management | Compartments, Groups, Dynamic Groups, Policies, Users, Network Sources |
| Tagging | Tags (Namespaces, Tag Keys, Default Tags, Cost Tracking Tags) |
| Quotas | Quota policies |
| Budgets | Budgets, Budget Alert Rules |
| Network | VCNs, Subnets, VLANs, DRGs, IGWs, NGWs, LPGs, Route Tables, DRG Route, Tables, Security Lists, Network Security Groups, Remote Peering Connections, Application Load Balancers, Network Load Balancers |
| OCI Network Firewall | OCI Network Firewall and Policy |
| DNS Management | Private DNS – Views, Zones, rrsets/records and Resolvers |
| Compute | Instances supporting Market Place Images, Remote Exec, Cloud-Init scripts, Dedicated VM Hosts |
| Storage | FSS, Block and Boot Volumes, Backup Policies, Object Storage Buckets |
| Oracle Databases | Exadata-Dedicated: Exa-Infra, Exa-VMClusters, DB Homes, CDBs, PDBs; DB Systems VM & BM, ATP, ADW |
| MySQL Database | MySQL(DB Systems and configurations) |
| SDDCs | Oracle Cloud VMWare Solutions |
| KMS | Vaults and Keys |
| Cloud Guard | Cloud Guard |
| Monitoring | Events, Notifications, Alarms, and Service Connector Hub |
| Logging services | VCN Flow Logs, LBaaS access and error Logs, OSS Buckets Logs, Firewall logs, FSS logs |
| Developer services | Upload to Resource Manager, Oracle Kubernetes Engine (OKE) |
| OCI FSDR | Export and Update DR Plans |
| CIS landing zone compliance | Download and Execute CIS Compliance Check Script |
| Policy Enforcement | OPA – Open Policy Agent |
| ShowOCI Report | Download and Execute showOCI Script |
Azure:
| Oracle DB@Azure | ADB@Azure |
Get started with the toolkit
Follow the CD3 documentation to quickly launch the toolkit and manage your resources
Learning Resources
Explore the CD3 codebase – Click here to visit our Git repository!
Refer to the CD3 documentation for detailed guidance
Watch our video tutorials to learn more.
Slack Channel
Join our CD3 Slack Channel and be part of exclusive insights and discussions on the toolkit.
Pricing
The CD3 toolkit itself incurs no cost. The resources provisioned on Oracle Cloud Infrastructure are charged based on the standard published OCI pricing.
Feedback
Share your feedback by raising an issue or through the Discussion topic in the Git repository.