Create a Confidential Identity Cloud Service Application

Before deploying the Essbase stack, create a confidential application in Oracle Identity Cloud Service and register Essbase with it.

  1. Open the Oracle Identity Cloud Service Console. From Oracle Cloud Infrastructure, select Identity, Federation, Identity Provider Details. In the Identity Provider Information tab, click the Oracle Identity Cloud Service Console link.
  2. In the Identity Cloud Service console, expand the Navigation Drawer icon, and then select Applications.

  3. Select +Add.
  4. Select Confidential Application, as described in Add a Confidential Application.

  5. In the App Details step, enter a name only, and then select Next. Tip: you may use the same name as the compartment, as you need one confidential application per compartment. Record the name for your information.
  6. In the Client step, select the option Configure this application as a client now.
  7. In the Authorization section,
    • Select the following allowed grant types: Client Credentials and Authorization Code.
    • If you don’t plan to provision a load balancer, select Allow non-HTTPS URLs.
      1. For the Essbase Redirect URL, enter a temporary/mock redirection URL (it ends with _uri):

      2. For the Essbase Post Logout Redirect URL, enter a temporary/mock URL:

    • Otherwise, if you're provisioning a load balancer, enter the following: above URL, but using https:, as shown.
      1. For the Essbase Redirect URL, enter a temporary/mock redirection URL:

      2. For the Essbase Post Logout Redirect URL, enter a temporary/mock URL:

  8. Under Token Issuance Policy, in the section Grant the client access to Identity Cloud Service Admin APIs, click Add, find and select the Identity Domain Administrator role. Minimum permission role must be set to CLOUD GATE and SECURITY ADMINISTRATOR.
  9. Scroll to the top of the page and click Next until you reach the Authorization section.
  10. Click Finish.
  11. From the Application Added popup window, record the following Identity Cloud Service details: IDCS Application Client ID and IDCS Application Client Secret. Record these values to use during your Essbase deployment.
  12. Record the IDCS Instance GUID from the following location: in the Identity Cloud Service Console, select your ID icon in the top right corner (the icon contains your initials), select About, and record the IDCS Instance GUID value. If you don't have access, ask your administrator to provide it. Example: idcs-123456789a123b123c12345678d123e1. Alternatively, the IDCS Instance GUID is at the front of the IDCS url in the browser - take the host portion of the url.
  13. Select Activate in the title bar, next to your application's name.

Oracle Cloud Services accounts provides Oracle Identity Foundation, which enables basic identity services functionality. This includes user management, group management, basic reporting, and authentication for Oracle applications. See: Oracle PaaS and IaaS Universal Credits Service Descriptions. For information regarding features available in various Oracle Identity Cloud Service versions, see: About Oracle Identity Cloud Service Pricing Models.