Configure a Confidential Application

To register the Oracle Identity Cloud Service Linux Pluggable Authentication Module (PAM) as a client application in Oracle Identity Cloud Service, you create a confidential application with the POSIX Viewer role.

  1. In the Identity Cloud Service console, expand the Navigation Drawer, and then click Applications.
  2. Click Add.
  3. On the Add Application page, click Confidential Application.
  4. In the Add Confidential Application wizard's Details page, in the App Details Section.
    1. Enter a Name for the application.
    2. Click Next.
      A confirmation message indicates that the application has been added in a deactivated state.
  5. On the Add Confidential Application wizard's Client page, click Configure this application as a client now.
  6. In the Authorization section that opens, select these two Allowed Grant Types:
    • Client Credentials
    • JWT Assertion
  7. In the Grant the client access to Identity Cloud Service Admin APIs section at the bottom, click Add.
  8. In the Add App Role dialog box, select these roles:
    • Me
    • POSIX Viewer
    • Signin
  9. Click Add to close the Add App Role dialog box.
  10. At the top of the Add Confidential Application wizard’s Client page, click Next.
  11. Continue to click Next through the remaining wizard pages, then click Finish.
  12. Record the Client ID and Client Secret that appear in the Application Added dialog box.
    To integrate with your confidential application, use this ID and secret as part of your connection settings. The Client ID and Client Secret are equivalent to a credential (for example, an ID and password) that your application uses to communicate with Oracle Identity Cloud Service.
  13. Click Close.

    The new application’s details page is displayed.

  14. At the top of the page, to the right of the application name, click Activate.
  15. In the Activate Application? dialog box, click Activate Application.