Sign-On Policies to Restrict Access to OCI (Gen 2) Environments

The default sign-on policy in Oracle Identity Cloud Service allows all users assigned to predefined roles to sign into Oracle Enterprise Performance Management Cloud environments by supplying their credentials (user name and password). Identity Domain Administrators may configure a custom sign-on policy to determine whether a user is allowed to access OCI (Gen2) EPM Cloud environments. For example, you may configure a policy that allows only users assigned to the Service Administrator role to access environments.

For detailed information on configuring sign-on policy, see these topics in Administering Oracle Identity Cloud Service: