1. Administering Oracle Autonomous Mobile Cloud Enterprise
  2. Adding Users and Assigning Roles

3 Adding Users and Assigning Roles

User roles define the privileges available to a user and the tasks that the user can perform. You can grant users various roles to enable them to access, administer, and use AMCe.

AMCe Team Member Roles

AMCe team member roles are predefined and can’t be created or customized. These roles determine which team members can develop backends, custom APIs, and use built-in services, such as Notification, Storage, and more. You can give team members wide access to features and user information or restrict them to a small set of permissions.

Note:

Team members must be assigned at least one of the roles in the table below to access the AMCe UI.

The common roles performed by team members in an AMCe instance are Administrator, Developer, Deployer, and Business User.

Role Name Team Member Role

Service Administrators

Performs administrative actions, including managing and overseeing the AMCe instance.

This role is used with AMCe core and Bots.

A specific type of administrator is the Entitlement Administrator. This role is assigned to the administrator when AMCe is first ordered, and it is the role used by the service administrator to create and manage AMCe.

AMCe Developer

Performs development and testing tasks, accesses MAX from within AMCe.

This role is used with AMCe core.

Deployer

Performs configuration tasks as well as artifact and metadata export and import tasks. Publishes apps from the MAX production environment.

This role is used with AMCe core.

Business User
Creates apps only with Mobile Application Accelerator (MAX).

Note:

This role limits the user to the MAX UI. Do not assign this role to app developers. The ServiceDeveloper role grants app developers access to MAX from within AMCe.

This role is used with AMCe core.

You might see some other predefined roles in the list for AMCe in Oracle Cloud, but they are for internal use and shouldn’t be assigned to any team members.

Add Users

Add AMCe team members by creating user accounts with Oracle Identity Cloud Service (IDCS). You can also use IDCS to provision mobile users of your apps and bots.

When you create an AMCe stack, an application is created in your identity domain for each service (AMCe core, Analytics, and Bots), and displayed on the IDCS Applications page. To enable a user to access a service, you must add the user to the associated application. For example, if a user needs to access AMCe core, Analytics, and Bots, then you must add the user to all three applications.

  1. Log in to Oracle Identity Cloud Service (IDCS).
    You can do this from the Service Overview page of your AMCe instance, or you can use the URL for Oracle Identity Cloud Service which was provided in the Welcome email you received when you activated the AMCe account. In this case, use your AMCe credentials.
  2. Click Users.
  3. Click Add.
  4. Enter the first name and last name of the user in the corresponding fields. Proceed to the next step to have the user log in with a user name or skip to Step 6 to have the user log in with an email address.
  5. If the user is going to log in with a user name, enter the user name in the User Name field and enter the user’s email address in the Email field.
    Be sure to clear the Use the email address as the user name option, which makes the user name the same as the user’s email address.
  6. If the user is going to log in using an email address, make sure the Use the email address as the user name option is checked and enter the email address for the user account in the User Name/Email field.

    Don’t use this option if the user name is currently in use or had been in use in the current domain. For existing (or previously existing) user names, a unique value will automatically be added to the email address to create a unique value for the user name.

  7. Click Next if you want to assign the user to a group or click Finish.

    To assign a group, just select the groups that you want to assign to this user account and click Finish.

    The Details page is displayed for the user. An invitation email is sent to the user containing log in credentials to AMCe.
  8. Assign the user to an AMCe application by clicking the Access tab on the Details page.
  9. Search for the application to assign the user to and click Assign.
  10. Repeat the previous step for each service that you want to assign to the user.
    If you have many users to assign, a faster method is to use groups, described in Create Groups.
After you’ve added users, you can create groups and assign a user to multiple groups. You or a service administrator can assign roles.

Create Groups

Create groups to grant access to AMCe services to multiple users.

Use the IDCS console to create groups and assign users.
  1. From the IDCS Admin Console, click Groups.
  2. Click Add.
  3. Enter a name and a brief description of the group.
  4. Click Next.
  5. Select each user that you want to assign to the group and click Finish. (Use the Search field to locate a specific individual.)

Next, assign roles to the group to grant access to AMCe services.

Assign Roles

Use roles to grant permissions and capabilities to the users in your AMCe service. Roles are managed from Oracle Identity Cloud Service (IDCS).

The predefined AMCe Team Member Roles are used to grant permissions and capabilities to the team members in your AMCe service.

A service administrator can also assign AMCe roles to existing users. The identity domain administrator role is required to create new users and groups.

  1. Log in to the IDCS console.
  2. Click the Applications tab.
  3. Locate and click the IDCS application for your AMCe service.
  4. Click the Application Roles tab.
  5. Open the role menu (role menu icon) for the role you want to assign and select Assign Users or Assign Group.
  6. Select the users or groups that you want to assign the role to and click Assign.
You can also use the role menu to revoke a role from a team member or group.