IAM Policies Required to Manage Autonomous Transaction Processing Dedicated Databases

Oracle Autonomous Database relies on the IAM (Identity and Access Management) service to authenticate and authorize cloud users to perform operations that use any of the Oracle Cloud Infrastructure interfaces (the console, REST API, CLI or SDK). The IAM service uses groups, compartments and policies to control which cloud users can access which resources. In particular, a policy defines what kind of access a group of users has to a particular kind of resource in a particular compartment. For more information, see Getting Started with Policies.

The following table lists the IAM policies required for a cloud user to perform management operations on Autonomous Transaction Processing dedicated databases.

Operation Required IAM Policies

Create an Autonomous Transaction Processing dedicated database

manage autonomous-databases

read autonomous-container-databases

View a list of Autonomous Transaction Processing dedicated databases

inspect autonomous-databases

View details of an Autonomous Transaction Processing dedicated database

inspect autonomous-databases

Set the password of an Autonomous Transaction Processing dedicated database's ADMIN user

use autonomous-databases

Scale the CPU core count or storage of an Autonomous Transaction Processing dedicated database

use autonomous-databases

Enable or disable auto scaling for an Autonomous Transaction Processing dedicated database

use autonomous-databases

Move an Autonomous Transaction Processing dedicated database to another compartment

use autonomous-databases in the Autonomous Transaction Processing dedicated database's current compartment and in the compartment you are moving it to

read autonomous-backups

Stop or start an Autonomous Transaction Processing dedicated database

use autonomous-databases

Restart an Autonomous Transaction Processing dedicated database

use autonomous-databases

Back up an Autonomous Transaction Processing dedicated database manually

read autonomous-databases

manage autonomous-backups

Restore an Autonomous Transaction Processing dedicated database

use autonomous-databases

read autonomous-backups

Clone an Autonomous Transaction Processing dedicated database

manage autonomous-databases

read autonomous-container-databases

Terminate an Autonomous Transaction Processing dedicated database

manage autonomous-databases