1. Getting Started with Oracle Enterprise Performance Management Cloud for Administrators
  2. Managing EPM Cloud Users and Roles
  3. Using SCIM to Synchronize Users and Groups on Oracle Identity Cloud (for OCI (Gen 2) Only)
  4. Synchronization Steps for Specific Users and Groups in Oracle Cloud Console (IAM)
  5. Steps to Complete in the Target Identity Domain in Oracle Cloud Console (IAM)

Steps to Complete in the Target Identity Domain in Oracle Cloud Console (IAM)

Create and activate a confidential application in the target identity domain. Confidential applications run on a protected server and keep the OAuth client ID and client secret. The Oracle Identity Domain application in the source identity domain uses these protected client credentials and connects with your target domain. See Create and Activate a Confidential Application.

If needed, create a new group in the target domain so that you can assign users in the source domain to this group once the source and target domains are integrated. See Create Group.

Create and Activate a Confidential Application

  1. Sign into Oracle Cloud Console (IAM) as an Identity Domain Administrator in the target domain. See Accessing the Oracle Cloud Console (IAM).
  2. Click Applications under Identity domain.
  3. Click Add application.
  4. On the Add application page, click Confidential Application, and then click Launch workflow.
    Screen to add confidential application
  5. On Add application details, enter application name and other optional details, and then click Next
    Screen to add confidential application name
  6. On Configure OAuth, select Configure this application as a client now.
  7. Select Client Credentials for Authorization.
    Screen to add client authorization details for confidential application
  8. Scroll-down to Token Issuance Policy.
  9. Click Specific for Authorized resources.
  10. Click Add app roles, and then click Add roles.
    Screen to add token issuance policy in client authorization details
  11. On Add App Role, select User Administrator, and click Add.
    Screen to add app role for confidential application
  12. Click Next.
  13. (Optional) Add information on Configure policy.
  14. Click Finish.

    The application is added. Note the Client ID and Client secret in General Information.

  15. Click Activate.
    Screen to note client details and activate
  16. On the Activate Application page, click Activate application to confirm activation.
    Screen to confirm activate application

Create Group

  1. Sign into Oracle Cloud Console (IAM) as an Identity Domain Administrator. See Accessing the Oracle Cloud Console (IAM).
  2. Click Groups under Identity Domain.
    Click groups under identity domain
  3. On Groups page, click Create group and enter group information.
  4. If you plan to synchronize this group with users from the source domain, do not add users. Click Create to create this group.

    The new group is now added in the Groups page.