Set Up Users, Groups, and Policies in Cloud Accounts That Do Not Use Identity Domains

For a cloud account in a region not yet updated to use identity domains prior to the creation of the cloud account, users and groups are set up in Oracle Cloud Infrastructure Identity and Access Management (IAM) and Oracle Identity Cloud Service (IDCS).

If you are not sure if your cloud account uses identity domains, see About Setting Up Users, Groups, and Policies.

For more information about Oracle Cloud Infrastructure IAM, IDCS, and the documentation that provides the information you need, see Documentation to Use for Cloud Identity in Overview of IAM in the Oracle Cloud Infrastructure documentation.

Without identity domains, roles are assigned to IDCS groups, then linked to Oracle Cloud Infrastructure IAM groups using federation, as illustrated in the following diagram.

Description of idcs-iam-config.png follows