The OCID of the compartment that contains the Delegation Control.
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags.
Example: {@code {\"Operations\": {\"CostCenter\": \"42\"}}}
List of Delegation Subscription OCID that are allowed for this Delegation Control. The allowed subscriptions will determine the available Service Provider Actions. Only support operators for the allowed subscriptions are allowed to create Delegated Resource Access Request.
Description of the Delegation Control.
Name of the Delegation Control. The name does not need to be unique.
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags.
Example: {@code {\"Department\": \"Finance\"}}
The OCID of the Delegation Control.
Set to true to allow all Delegated Resource Access Request to be approved automatically during maintenance.
The current lifecycle state of the Delegation Control.
Description of the current lifecycle state in more detail.
The format of the OCI Notification messages for this Delegation Control.
The OCID of the OCI Notification topic to publish messages related to this Delegation Control.
number of approvals required. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
List of pre-approved Service Provider Action names. The list of pre-defined Service Provider Actions can be obtained from the ListServiceProviderActions API. Delegated Resource Access Requests associated with a resource governed by this Delegation Control will be automatically approved if the Delegated Resource Access Request only contain Service Provider Actions in the pre-approved list.
The OCID of the selected resources that this Delegation Control is applicable to.
Resource type for which the Delegation Control is applicable to.
System tags for this resource. Each key is predefined and scoped to a namespace.
Example: {@code {\"orcl-cloud\": {\"free-tier-retained\": \"true\"}}}
Time when the Delegation Control was created expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
Time when the Delegation Control was deleted expressed in RFC 3339timestamp format, e.g. '2020-05-22T21:10:29.600Z'. Note a deleted Delegation Control still stays in the system, so that you can still audit Service Provider Actions associated with Delegated Resource Access Requests raised on target resources governed by the deleted Delegation Control.
Time when the Delegation Control was last modified expressed in RFC 3339 timestamp format, e.g. '2020-05-22T21:10:29.600Z'
The OCID of the OCI Vault that will store the secrets containing the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER. Delegate Access Control Service will generate the SSH keys and store them as secrets in the OCI Vault.
The OCID of the Master Encryption Key in the OCI Vault specified by vaultId. This key will be used to encrypt the SSH keys to access the resource governed by this Delegation Control by Delegate Access Control Service. This property is required when resourceType is CLOUDVMCLUSTER.
Delegation Control enables you to grant, audit, or revoke the access Oracle has to your Exadata Cloud infrastructure, and obtain audit reports of all actions taken by a human operator, in a near real-time manner.