1. Getting Started with Oracle Enterprise Performance Management Cloud for Administrators
  2. Managing EPM Cloud Users and Roles
  3. Using SCIM to Synchronize Users and Groups on Oracle Identity Cloud (for OCI (Gen 2) Only)
  4. Synchronization Steps for Specific Users and Groups in Oracle Cloud Identity Console
  5. Steps to Complete in the Target Identity Domain in Oracle Cloud Identity Console

Steps to Complete in the Target Identity Domain in Oracle Cloud Identity Console

Create and activate a confidential application in the target identity domain. Confidential applications run on a protected server and keep the OAuth client ID and client secret. The Oracle Identity Domain application in the source identity domain uses these protected client credentials and connects with your target domain. See Create and Activate a Confidential Application.

If needed, create a new group in the target domain so that you can assign users in the source domain to this group once the source and target domains are integrated. See Create an Identity Cloud Service Group.

Create and Activate a Confidential Application

  1. Sign into Oracle Cloud Identity Console as a user assigned to Identity Domain Administrator role in the target domain. See Accessing the Oracle Cloud Identity Console (IDCS).
  2. In the Navigation menu, click Applications.
  3. On the Applications page, click Add.
  4. Click Confidential Application.
    Screen to add confidential application
  5. On Details, enter application name and other optional details, and then click Next.
    Screen to add confidential application name
  6. On Client, select Configure this application as a client now.
  7. Select Client Credentials for Allowed Grant Types.
    Screen to add client authorization details for confidential application
  8. Scroll-down to Token Issuance Policy.
  9. On Grant the client access to Identity Cloud Service Admin API, click Add.
  10. On Add App Role, select User Administrator, and click Add .
    Screen to add app role for client access in confidential application
  11. Click Next.
  12. (Optional) Add information on Resources, Web Policy, and Authorization.
  13. Click Finish.

    The application is added and you get this message. Note the Client ID and Client Secret. You can also see this information on the Configuration tab of this application detail.


    Message for client ID and client secret
  14. Click Activate.
    Screen to activate confidential app configuration

Create an Identity Cloud Service Group

  1. In the Navigation menu, click Groups.
  2. On the Groups page, click Add.
  3. Enter Name and other optional details, and click Next.
    Screen to create group step 1
  4. If you plan to synchronize this group with users from the source domain, do not add users. Click Finish.