Oracle Cloud Infrastructure Documentation

Service Limits

Learn about the service limits for Oracle Cloud Infrastructure.

When you sign up for Oracle Cloud Infrastructure, a set of service limits is configured for your tenancy. The service limit is the quota or allowance set on a resource. For example, a tenancy is allotted a maximum number of Compute instances per availability domain. These limits are established with the Oracle sales representative when you buy Oracle Cloud Infrastructure. If you didn't establish limits with the Oracle sales representative, or, if you signed up through the Oracle Store, default or trial limits are set for your tenancy. These limits might be increased for you automatically based on your Oracle Cloud Infrastructure resource usage and account standing. You can also request a service limit increase.

Depending on whether you have a subscription, you can view the limits and usage for it. The same service can have two different limit values, depending on which subscription you have selected on the Limits, Quotas and Usage page. Some services aren't tied to any subscription, but still have limit values associated with them.

Required IAM Policy

To use Oracle Cloud Infrastructure, an administrator must be a member of a group granted security access in a policy  by a tenancy administrator. This access is required whether you're using the Console or the REST API with an SDK, CLI, or other tool. If you get a message that you don't have permission or are unauthorized, verify with the tenancy administrator what type of access you have and which compartment  your access works in.

If you're in the Administrators group, you have permission to view limits and usage. If you're not, here's an example IAM policy that grants the required permission to users in a group called LimitsAndUsageViewers:

Allow group LimitsAndUsageViewers to inspect resource-availability in tenancy

For the resource availability API (usage) the policy can be at the tenant or compartment level: 

Allow group LimitsAndUsageViewers to read resource-availability in tenancy
Allow group LimitsAndUsageViewers to read resource-availability in compartment A

For limit definitions, services, and values APIs (only at the tenant level):

Allow group LimitsAndUsageViewers to inspect resource-availability in tenancy

For limit values APIs (doesn't include definitions or services), the following policy is also supported:

Allow group LimitsAndUsageViewers to inspect limits in tenancy

READ resource-availability is required to obtain the resource availability. Four APIs are available:

ListServices, ListLimitDefinitions, and ListLimitValues all require INSPECT at the tenancy level, while GetResourceAvailability requires READ at the compartment level to read the data.

Compartment Quotas

Compartment quotas are similar to service limits, however, the biggest difference is that service limits are set by Oracle, and compartment quotas are set by administrators, using policies that allow administrators to allocate resources with a high level of flexibility. Compartment quotas are set using policy statements written in a declarative language that's similar to the IAM policy language.

To learn more, see Overview of Compartment Quotas.

When You Reach a Service Limit

When you reach the service limit for a resource, you receive an error when you try to create a new resource of that type. You're then prompted to submit a request to increase the limit. You can't create a new resource until you're granted an increase to the service limit, or you delete an existing resource.

In addition, limit increase requests might not be approved because of security concerns or if limit increases aren't allowed for a particular resource.

Note

Service limits apply to a specific scope, and when the service limit in one scope is reached, you might still have resources available to you in other scopes (for example, other availability domains).