About Oracle Cloud Infrastructure Users and Groups

Use the Identity and Access Management (IAM) system in Oracle Cloud Infrastructure to manage users, groups, and policies.

For example, the following Oracle Cloud Infrastructure policy grants members of the group MyGroup all privileges to all resources in the compartment MyCompartment:

Allow group MyGroup to manage all-resources in compartment MyCompartment

By default, this system is also configured to use Oracle Identity Cloud Service as a federated identity provider. Therefore, when you define policies in Oracle Cloud Infrastructure, you can reuse existing users and groups in Oracle Identity Cloud Service. You can either add users to a new group in Oracle Cloud Infrastructure, or map an existing Oracle Identity Cloud Service group to an Oracle Cloud Infrastructure group.

While policies control access to services in Oracle Cloud Infrastructure, administrator roles control access to platform services that are found only on the My Services Dashboard. Assign Oracle Identity Cloud Service users and groups to administrator roles in order to grant them access to services that are not found in Oracle Cloud Infrastructure.

• Common Policies in the Oracle Cloud Infrastructure documentation
• Federating with Oracle Identity Cloud Service in the Oracle Cloud Infrastructure documentation
• Create a Service Administrator in Getting Started with Oracle Cloud