3 OCI IAM Console

Identity Domains for Suites Management

Suites Management requires two Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) Identity Domains within the customer's OCI tenancy:
  1. Suites Administration Identity Domain

    Used to authenticate venue staff and administrative users.

    Examples include:
    • Suite administrators
    • Suite attendants
    • Other customer employees responsible for managing venue operations within Suites Management
  2. Account User Identity Domain

    Used to authenticate account users.

    Examples include:
    • Suite owners
    • Account holders
    • Guests
    • Fans who access the Suites Account application

Separating administrative users from account users provides greater flexibility for user lifecycle management, security policies, branding, and communications.

Identity Domain Requirements

Customers can create both Identity Domains using the Free Identity Domain type available in OCI IAM.

After Suites Management is connected to an Identity Domain during provisioning, Oracle automatically upgrades the domain to the required Oracle Apps domain type and completes the additional configuration required for Suites Management integration.

The Identity Domains are referenced during organization provisioning in Suites Management and are subsequently used to authenticate users accessing the Suites applications.

Creating Identity Domains in OCI IAM

To create the required Identity Domains:
  1. Sign in to the OCI Console using a user account with permissions to manage IAM resources.
  2. Navigate to Identity & Security, and then Domains.
  3. Select Create Domain.
  4. Select the Free domain type.
  5. Enter a unique name and description for the domain.
  6. Complete the domain creation process.
  7. Repeat these steps to create a second domain for the alternate user population.
Oracle recommends using clear naming conventions to distinguish the domains, such as:
  • - Suites Admin
  • - Suites Accounts

For detailed instructions and current requirements, see the Oracle Cloud Infrastructure Identity and Access Management documentation for Identity Domains.

Information Required for Identity Domain Provisioning

To enable Suites Management to integrate with and manage users in the Identity Domains, customers must provide the following information for each Identity Domain during onboarding.

Identity Domain Information

Provide the following details for both the Suites Administration Identity Domain and the Account User Identity Domain:

Table 3-1 Identity Domain Information

Field Description

Identity Domain Name

The name of the Identity Domain.

Identity Domain OCID

The Oracle Cloud Identifier (OCID) of the Identity Domain.

Identity Domain URL

The Identity Domain URL used for authentication and administration.

OCI Region

The OCI region where the Identity Domain is hosted.

Oracle Provisioning Activities

As part of the provisioning process, Oracle will:
  • Create the confidential application used by Suites Management.
  • Configure OAuth 2.0 Client Credentials authentication.
  • Configure the required application permissions and access policies.
  • Configure Identity Domain settings required for Suites Management integration.
  • Upgrade the Identity Domain from the Free domain type to the Oracle Apps domain type, when required.

Branding and Communication Preferences

Customers are encouraged to provide the following branding assets and communication preferences for each Identity Domain:

  • Organization Name
  • Company Logo
  • Activation Email Customizations
  • Password Reset Email Customizations
  • User Support Contact Information

These settings can be applied to Identity Domain communications used for user onboarding, account activation, and password recovery.