Permissions for an Oracle Data Safe Private Endpoint

Use or create an Oracle Data Safe private endpoint, a user group requires permissions in Oracle Cloud Infrastructure Identity and Access Management (IAM) to do the following:

If your target database has a private IP address, you can connect to it using an Oracle Data Safe private endpoint. The user group requires at least the use permission on an Oracle Data Safe private endpoint and on the underlying virtual networking resources of the private endpoint for the relevant compartments. For example, the following statements allow a group to create a private endpoint:

allow group <group-name> to manage data-safe-private-endpoints in compartment <compartment-name>
allow group <group-name> to manage virtual-network-family in compartment <compartment-name>

If the group already has an Oracle Data Safe private endpoint and wants to reuse it, then replace manage with use in the statements above.

For more information about the resources and their permissions, see OCI Resources for Oracle Data Safe.