1. User Guide
  2. Getting Started
  3. Getting Started with Oracle Cloud
  4. Users and Roles
  5. Create Application Users

2.1.3.1 Create Application Users

After you log in to the IAM console, one of your first tasks is to create additional user accounts.

You should assign specific user groups to the user accounts that you are creating. There are seeded user groups available with the respective services, users must be mapped to one or more of the user groups, depending on the role that they perform.
For example, you can create a user for each member of your team. Each member can then sign into the account with their credentials. You can also assign each user to specific user groups and apply specific security policies or roles to each group.

You can create the users and map the users to groups for your service. After creating the users, the users will receive a Welcome email. The users must activate their accounts and enter a new password to access the services.

To create users in the IAM Console:
  1. In the IAM Console, click Profile and select Identity domain to add the application users.
  2. In the Identity Domain left pane, click Users and select Create user.
  3. Enter the following details:
    • To set an username as the login ID, uncheck the Use the email address as the username check box and enter the required username for the Username / Email

      Note:

      The username should be alphanumeric and cannot exceed 20 characters. You can enter only hyphen (-) and underscore (_) as special characters.

      Note:

      You can only set the username as the login ID and currently setting the email address as the login ID is not supported.
  4. Select the user groups according to your user-specific groups or access, in the Groups (Optional).

    Note:

    After a user logs in to a specific cloud service, the user to user-group mapping created in the IAM Console will onboard into the master and mapping tables. Later, if you deselect (remove) a user from a group in Assign User to Groups after provisioning, ensure that you also unmap the user from the corresponding user-group in the Admin Console. This is a mandatory step to complete the unmapping process.
  5. Select one of the following options, to create an Identity Administrator or Authorizer user :
    • IDNTY_ADMIN: Assign the user to create an Administrator User.
    • IDNTY_AUTH: Assign the user to create an Authorizer User.
  6. After entering the required information, click Create to create and add the new user to the User Summary.

For bulk user creation, use batch import user accounts using a .CSV file.