Policys für Oracle Autonomous Database
Zeigt, wie Sie das Verwalten von Oracle Autonomous Database Service-Datenbanken wie Oracle Autonomous Database Serverless und Autonomous Database on Dedicated Exadata Infrastructure (Autonomous Container Database) durch Disaster Recovery (DR) zulassen, die Teil des Anwendungsstacks sind.
Policys zur Konfiguration mit Resource Principal
For Member Type: AUTONOMOUS_DATABASE
Allow dynamic-group <Dynamic_group_Name> to manage autonomous-database-family in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> read vaults in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> read secret-family in compartment <compartment_name>
For Member Type: AUTONOMOUS_CONTAINER_DATABASE
Allow dynamic-group <Dynamic_group_Name> to manage autonomous-database-family in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update cloud-autonomous-vmclusters in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update autonomous-vmclusters in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update autonomousContainerDatabaseDataguardAssociations in compartment <compartment_name>Policys zur Konfiguration mit Benutzerauthentifizierung
Allow group group_name to manage autonomous-database-family in compartment compartment_nameEine restriktivere Policy, mit der nur Switchover- und Failover-Vorgänge für autonome Datenbanken durch DR zulässig sind, sieht in etwa folgendermaßen aus:
Allow group group_name to update autonomous-databases in compartment compartment_nameWeitere Informationen zu den Identity and Access Management-(IAM-)Policys für Oracle Autonomous Database finden Sie unter Details zum Database-Service.
Für Autonomous Database Serverless:
Allow group group_name to update AutonomousDatabaseDataguardAssociation in compartment
compartment_nameFür Autonomous Database on Dedicated Exadata Infrastructure (autonome Containerdatenbank):
Allow group group_name to manage autonomous-database-family in compartment compartment_name
Allow group group_name to update cloud-autonomous-vmclusters in compartment compartment_name
Allow group group_name to update autonomous-vmclusters in compartment compartment_name
Allow group group_name to update autonomousContainerDatabaseDataguardAssociations in compartment compartment_nameÜbergeordnetes Thema: Policys für andere von Full Stack Disaster Recovery verwaltete Services