Configuring Data Access for an IoT Domain Group
Add a Virtual Cloud Network OCID or OCIDs to an IoT domain group to define the IP address range or ranges allowed to access the database for an IoT domain group.
If you configure a direct database connection or a connection to Oracle Analytics Cloud, both configuration options require adding the VCN or VCNs to the IoT domain group to allow the IoT domain group to access the database. If the IoT domain data access option is configured, then you can view the database connection string and the database token scope for an IoT domain group when you get the details for the IoT domain group.
The maximum number of VCNs you can associate to an IoT domain group is 5.
To complete the following steps your user must have at least read access to the VCN or VCNs you want to add to the IoT domain group. To confirm if you have read access to the VCN, see Getting a VCN's Details to view the VCNs you have access to.
For administrators:
request.principal.type
policy to allow any user working with an IoT domain group read access to a VCN or VCNs in a specific compartment. This policy provides the necessary access for configuring data access for an IoT domain group. Allow any-user to {VCN_READ} in compartment <compartment-name> where request.principal.type = 'iotdomain'
For more information, see Prerequisites.Use the oci iot domain-group configure-data-access command and required parameters to configure data access for an IoT domain group. Replace the
<vcn-OCID>
with the OCIDs for the VCNs for your IoT domain group. Depending on your configuration, you can add one VCN OCID or multiple VCN OCIDs. The VCN must be in the same region as the IoT database. Replace the<iot-domain-group-OCID>
with the OCID for the IoT domain group you want to update:oci iot domain-group configure-data-access --db-allow-listed-vcn-ids '["vcn-OCID-1","vcn-OCID-2"]' --iot-domain-group-id <iot-domain-group-OCID>
For a complete list of parameters and values for CLI commands, see CLI Command Reference.
Run the ConfigureIotDomainGroupDataAccess operation to configure the data access for the IoT domain group.