Manage Groups with IDCS

As a best practice, you should create groups for your organization roles in Oracle Identity Cloud Service (IDCS) and assign the appropriate application roles to those groups. Then you can add users to those groups to automatically assign them the appropriate application roles.

Note:

If you're using Oracle Content Management Starter Edition, IDCS groups aren't supported (only Oracle Content Management groups). To take advantage of the full feature set, upgrade to the Premium Edition.

If you need to manage Oracle Content Management groups, you can do so on the Groups page in your user menu, and you can manage group settings in System administration.

Manage Groups with IDCS

As you use your system, you'll want to add, import, export, or remove groups.

To manage groups:

Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
In the Oracle Cloud Console, click on the top left to open the navigation menu, click Identity & Security, then, under Identity, click Federation.
On the Federation page, click OracleIdentityCloudService, then, on the identity provider details page, click the link to the Oracle Identity Cloud Service Console. The IDCS Console opens in a new window.
In the IDCS Console, click , and then click Groups.
Perform any of the following tasks:
- To create a group, click Add.
- To import groups, click Import.
- To export groups, click Export.
- To remove a group, select it, and then click Remove.
See Managing Oracle Identity Cloud Service Groups in Administering Oracle Identity Cloud Service.

Assign Roles to Groups with IDCS

After creating groups for your organization roles, assign the appropriate application roles to those groups to give them access to the Oracle Content Management features they need.

To assign roles to groups:

Navigate to your identity domain:
- If you're viewing the group you just created, click your identity domain in the breadcrumb.
- If you're not already in the Oracle Cloud Console:
  1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
  2. In the Oracle Cloud Console, click , click Identity & Security, then, under Identity, click Domains.
  3. Open the identity domain you're using for Oracle Content Management.
In the navigation menu on the left, click Oracle Cloud Services.
On the Oracle Cloud Services page, find the CECSAUTO_instanceCECSAUTO application (where instance is the name of the Oracle Content Management instance you created), and open it.
On the CECSAUTO_instanceCECSAUTO application details page, in the navigation menu on the left, click Application Roles.
Next to the role you want to assign, click , and then select Assign Groups.
Find and select the group you want, and then click Assign.
For a list of typical organization roles and the application roles they need, see Typical Organization Roles. For a description of the predefined roles in Oracle Content Management, see Application Roles.

Assign Users to Groups IDCS

Assign users to groups to automatically give them the appropriate roles and permissions for Oracle Content Management.

To assign users to groups:

Navigate to the Groups page:
- If you're viewing users, in the navigation menu on the left, click Groups.
- If you're not already in the Oracle Cloud Console:
  1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
  2. In the Oracle Cloud Console, click , click Identity & Security, then, under Identity, click Domains.
  3. Open the identity domain you're using for Oracle Content Management.
  4. In the navigation menu on the left, click Groups.
Open the group you want to assign users to.
Click the Users tab.
On the Users tab, click Assign user to groups.
Select the users you want to add, and then click Add.