Class DelegationControl

Delegation Control enables you to grant, audit, or revoke the access Oracle has to your Exadata Cloud infrastructure, and obtain audit reports of all actions taken by a human operator, in a near real-time manner.

Inheritance
object
DelegationControl
Inherited Members
Namespace: Oci.DelegateaccesscontrolService.Models
Assembly: OCI.DotNetSDK.Delegateaccesscontrol.dll
Syntax
public class DelegationControl

Properties

CompartmentId

Declaration
[Required(ErrorMessage = "CompartmentId is required.")]
[JsonProperty(PropertyName = "compartmentId")]
public string CompartmentId { get; set; }
Property Value
Type Description
string

The OCID of the compartment that contains the Delegation Control.
Remarks

Required

DefinedTags

Declaration
[JsonProperty(PropertyName = "definedTags")]
public Dictionary<string, Dictionary<string, object>> DefinedTags { get; set; }
Property Value
Type Description
Dictionary<string, Dictionary<string, object>>

Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags.
Example: {"Operations": {"CostCenter": "42"}}

DelegationSubscriptionIds

Declaration
[JsonProperty(PropertyName = "delegationSubscriptionIds")]
public List<string> DelegationSubscriptionIds { get; set; }
Property Value
Type Description
List<string>

List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.

Description

Declaration
[JsonProperty(PropertyName = "description")]
public string Description { get; set; }
Property Value
Type Description
string

Description of the Delegation Control.

DisplayName

Declaration
[Required(ErrorMessage = "DisplayName is required.")]
[JsonProperty(PropertyName = "displayName")]
public string DisplayName { get; set; }
Property Value
Type Description
string

Name of the Delegation Control. The name does not need to be unique.
Remarks

Required

FreeformTags

Declaration
[JsonProperty(PropertyName = "freeformTags")]
public Dictionary<string, string> FreeformTags { get; set; }
Property Value
Type Description
Dictionary<string, string>

Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags.
Example: {"Department": "Finance"}

Id

Declaration
[Required(ErrorMessage = "Id is required.")]
[JsonProperty(PropertyName = "id")]
public string Id { get; set; }
Property Value
Type Description
string

The OCID of the Delegation Control.
Remarks

Required

IsAutoApproveDuringMaintenance

Declaration
[JsonProperty(PropertyName = "isAutoApproveDuringMaintenance")]
public bool? IsAutoApproveDuringMaintenance { get; set; }
Property Value
Type Description
bool?

Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.

LifecycleState

Declaration
[JsonProperty(PropertyName = "lifecycleState")]
[JsonConverter(typeof(ResponseEnumConverter))]
public DelegationControl.LifecycleStateEnum? LifecycleState { get; set; }
Property Value
Type Description
DelegationControl.LifecycleStateEnum?

The current lifecycle state of the Delegation Control.

LifecycleStateDetails

Declaration
[JsonProperty(PropertyName = "lifecycleStateDetails")]
public string LifecycleStateDetails { get; set; }
Property Value
Type Description
string

Description of the current lifecycle state in more detail.

NotificationMessageFormat

Declaration
[JsonProperty(PropertyName = "notificationMessageFormat")]
[JsonConverter(typeof(ResponseEnumConverter))]
public DelegationControl.NotificationMessageFormatEnum? NotificationMessageFormat { get; set; }
Property Value
Type Description
DelegationControl.NotificationMessageFormatEnum?

The format of the OCI Notification messages for this Delegation Control.

NotificationTopicId

Declaration
[JsonProperty(PropertyName = "notificationTopicId")]
public string NotificationTopicId { get; set; }
Property Value
Type Description
string

The OCID of the OCI Notification topic to publish messages related to this Delegation Control.

NumApprovalsRequired

Declaration
[JsonProperty(PropertyName = "numApprovalsRequired")]
public int? NumApprovalsRequired { get; set; }
Property Value
Type Description
int?

number of approvals required.

PreApprovedServiceProviderActionNames

Declaration
[JsonProperty(PropertyName = "preApprovedServiceProviderActionNames")]
public List<string> PreApprovedServiceProviderActionNames { get; set; }
Property Value
Type Description
List<string>

List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.

ResourceIds

Declaration
[JsonProperty(PropertyName = "resourceIds")]
public List<string> ResourceIds { get; set; }
Property Value
Type Description
List<string>

The OCID of the selected resources that this Delegation Control is applicable to.

ResourceType

Declaration
[Required(ErrorMessage = "ResourceType is required.")]
[JsonProperty(PropertyName = "resourceType")]
[JsonConverter(typeof(ResponseEnumConverter))]
public DelegationControlResourceType? ResourceType { get; set; }
Property Value
Type Description
DelegationControlResourceType?

Resource type for which the Delegation Control is applicable to.
Remarks

Required

SystemTags

Declaration
[JsonProperty(PropertyName = "systemTags")]
public Dictionary<string, Dictionary<string, object>> SystemTags { get; set; }
Property Value
Type Description
Dictionary<string, Dictionary<string, object>>

System tags for this resource. Each key is predefined and scoped to a namespace.
Example: {"orcl-cloud": {"free-tier-retained": "true"}}

TimeCreated

Declaration
[JsonProperty(PropertyName = "timeCreated")]
public DateTime? TimeCreated { get; set; }
Property Value
Type Description
DateTime?

Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

TimeDeleted

Declaration
[JsonProperty(PropertyName = "timeDeleted")]
public DateTime? TimeDeleted { get; set; }
Property Value
Type Description
DateTime?

Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.

TimeUpdated

Declaration
[JsonProperty(PropertyName = "timeUpdated")]
public DateTime? TimeUpdated { get; set; }
Property Value
Type Description
DateTime?

Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'

VaultId

Declaration
[JsonProperty(PropertyName = "vaultId")]
public string VaultId { get; set; }
Property Value
Type Description
string

The OCID of the OCI Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the OCI Vault.

VaultKeyId

Declaration
[JsonProperty(PropertyName = "vaultKeyId")]
public string VaultKeyId { get; set; }
Property Value
Type Description
string

The OCID of the Master Encryption Key in the OCI Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.