Identity and Access Management (IAM)

Oracle Private Cloud Appliance Identity and Access Management Service (IAM) enables you to control which users have what access to which resources in your appliance tenancy.

You can create users, user groups, and dynamic groups (instance groups) and create policies to allow different types of access to specified resources in specified compartments.

It's the task of a tenancy administrator to control what type of access a user group has, and to which specific resources that access applies. The responsibility to manage and maintain access control can be delegated to other privileged users, for instance by granting them full access to a subcompartment of the tenancy.

In addition to users, instance principals also have authorization to manage resources.