Oracle Cloud Infrastructure Documentation

Identity Lifecycle Management Between OCI IAM and Entra ID

Configure provisioning between OCI IAM and Entra ID using three different methods.

This set of tutorials will take around 30 minutes. Use the following scenarios to determine which method to use:

Tutorial 1: Configure Entra ID as the authoritative identity store to manage identities in OCI IAM using an application template from the Entra ID gallery. User accounts are pushed from Entra ID to OCI IAM.

Tutorial 2: Configure Entra ID as the authoritative identity store to manage identities in OCI IAM using the app template from OCI IAM Application Catalog. OCI IAM pulls users, groups, and group membership from Entra ID into OCI IAM.

Tutorial 3: Configuring OCI IAM as the authoritative identity store to manage identities. OCI IAM pushes users, groups, and licenses to Entra ID.

Note

These tutorials are specific to IAM with Identity Domains.

Before You Begin

To perform this set of tutorials, you must have the following:

  • A paid Oracle Cloud Infrastructure (OCI) account, or an OCI trial account. See Oracle Cloud Infrastructure Free Tier.

  • Identity domain administrator role for the OCI IAM identity domain. See Understanding Administrator Roles.
  • An Entra ID account with one of the following Entra ID roles:
    • Global Administrator
    • Cloud Application Administrator
    • Application Administrator

Tutorial 1: Entra ID as Authoritative Source to Manage Identities Using Entra ID Gallery Application

Tutorial 2: Entra ID as Authoritative Source to Manage Identities Using the OCI IAM Application Catalog

Tutorial 3: OCI IAM as Authoritative Source to Manage Identities in Entra ID