Create an OKE User Group and Policies
In the Private Cloud Appliance OKE tenancy, create a user group and policies that authorize users to use OKE.
OKE users groups have a policy that authorizes their members to use OKE. Create separate OKE users groups to authorize different users to use OKE in different compartments.
See Creating and Managing User Groups to create a group or update an existing group.
Include the manage cluster-family authorization in the user group policy. The following is an example policy for an OKE user group. Depending on your organization, for example if you have a separate team who manage network resources, some of the following "manage" authorizations could be "read" or "use" authorizations, or you might need to add authorizations.
allow group group-name to read all-resources in tenancy
allow group group-name to manage cluster-family in compartment compartment-name
allow group group-name to manage instance-family in compartment compartment-name
allow group group-name to manage network-load-balancers in compartment compartment-name
allow group group-name to manage virtual-network-family in compartment compartment-nameFor general information about policies, see Managing Policies.
What's Next: