Integrer Oracle Analytics med Oracle Cloud Infrastructure (OCI) Data Science for at anvende maskinel indlæring og kunstig intelligens, uden at du behøver at være dataekspert. I forbindelse med sundhedsdata kan du for eksempel bruge en forudsigelsesmodel til at identificere risikofaktorer og forudsige risikoen for genindlæggelse af patienter efter udskrivelse.
Disse forudsætninger er nødvendige for integrering af OCI Data Science med Oracle Analytics.
Sørg for, at du har de påkrævede sikkerhedspolitikker, når du integrerer Oracle Analytics med OCI Data Science.
Den OCI-bruger, som du angiver i forbindelsen mellem Oracle Analytics Cloud og din OCI-leje, skal have læse-, skrive- og slettetilladelser til det rum, der indeholder de Data Science-modeller, som du vil bruge. Sørg for, at OCI-brugeren tilhører en brugergruppe med følgende minimumpolitikker for OCI-sikkerhed. Når du opretter forbindelse til en OCI-leje fra Oracle Analytics, kan du bruge en OCI-API-nøgle eller -ressourceprincipal.
Bemærk:
Oracle Cloud-id'er (OCID'er) er ressourceidentifikatorer, der bruges i OCI.Bemærk:
For at inkludere alle Analytics-instanser under et rum for en ressourceprincipal skal du angive{request.principal.type='analyticsinstance', request.principal.compartment.id='<compartmentA_ocid>'}
i stedet for {request.principal.id='<analytics_instance_ocid>'}
.Politikker for API-nøgle | Politikker for ressourceprincipal |
---|---|
Allow group <group_name> to read data-science-projects in compartment <compartment_name> |
Allow any-user to read data-science-projects in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to read data-science-models in compartment <compartment_name> |
Allow any-user to read data-science-models in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to manage data-science-jobs in compartment <compartment_name> |
Allow any-user to manage data-science-jobs in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to inspect instance-family in compartment <compartment_name> |
Allow any-user to inspect instance-family in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to manage data-science-job-runs in compartment <compartment_name> |
Allow any-user to manage data-science-job-runs in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to inspect virtual-network-family in compartment <compartment_name> |
Allow any-user to inspect virtual-network-family in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow service datascience to use virtual-network-family in compartment <compartment_name> |
Allow service datascience to use virtual-network-family in compartment <compartment_name> |
Allow group <group_name> to manage log-groups in compartment <compartment_name> |
Allow any-user to manage log-groups in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to read buckets in compartment <compartment_name> |
Allow any-user to read buckets in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Allow group <group_name> to manage objects in compartment <compartment_name> where target.bucket.name='<staging_bucket_name>' |
Allow any-user to manage objects in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>', target.bucket.name='<staging_bucket_name>'} |
Allow group <group_name> to read objectstorage-namespaces in compartment <compartment_name> |
Allow any-user to read objectstorage-namespaces in compartment <compartment_name> where all {request.principal.id='<analytics_instance_ocid>'} |
Politik for dynamisk gruppe | Beskrivelse |
---|---|
Allow dynamic-group <dynamic_group> to read data-science-models in compartment <compartment_name> |
Giver Data Science-model adgang til kørslen af Data Science-jobbet. |
Allow dynamic-group <dynamic_group> to manage objects in compartment <compartment_name> where target.bucket.name='<staging_bucket_name>' |
Giver Object Storage adgang til kørslen af Data Science-jobbet. |
Allow dynamic-group <dynamic_group> to use log-content in compartment <compartment_name> |
Giver log adgang til kørslen af Data Science-jobbet. |
Bemærk:
Når du angiver<dynamic_group>
, skal du bruge en matchningsregel med dette format: all { resource.type='datasciencejobrun', resource.compartment.id='<compartment_ocid>' }
, hvor <compartment_ocid
> er Oracle Cloud-id'en for det rum, som indeholder Data Science-modellerne.Før du kan anvende Oracle Cloud Infrastructure Data Science-modeller (OCI) til at analysere data, skal du registrere dem i Oracle Analytics.