Set Up Service Instance
You can create an Oracle Access Governance instance in the Oracle Cloud Infrastructure Console. The steps below show you how to create an instance and verify its operation.
Note:
Oracle Access Governance is available in all the regions of the commercial realm. Full details about the regions can be referred to at Regions and Availability Domains.Related Topics
Prerequisites
- Read objectstorage-namespace resources in tenancy (root compartment) in a policy statement.
- Manage agcs-instance resources for a given compartment or tenancy (root compartment) in a policy statement
- Manage agcs-instance resources for a given compartment or tenancy (root compartment) in a policy statement.
Example Policies for Tenancies using Identity Domains
- Tenancy
Admin
Allow group <domain_name>/<group_name> to manage all-resources in tenancy
- Compartment Admin
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <domain_name>/<group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <domain_name>/<group_name> to manage all-resources in compartment <compartment_name>
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
- With ‘manage agcs-instance’ in tenancy
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <domain_name>/<group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <domain_name>/<group_name> to manage agcs-instance in tenancy
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
- With ‘manage agcs-instance’ in a compartment
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <domain_name>/<group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <domain_name>/<group_name> to manage agcs-instance in compartment <compartment_name>
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Example Policies for Tenancies without Identity Domains
- Tenancy
Admin
Allow group <group_name> to manage all-resources in tenancy
- Compartment Admin
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <group_name> to manage all-resources in compartment <compartment_name>
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
- With ‘manage agcs-instance’ in tenancy
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <group_name> to manage agcs-instance in tenancy
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
- With ‘manage agcs-instance’ in a compartment
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
Allow group <group_name> to read objectstorage-namespace in tenancy
- Add the following policy statement in the compartment where you want create the service instance
Allow group <group_name> to manage agcs-instance in compartment <compartment_name>
- Add the following policy statement in the root compartment of your tenancy. This will fetch the tenancy namespace to create a service instance.
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc.
Access to Oracle Support
Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs if you are hearing impaired.