2 Enabling Identity Domain Replication

Subscribing to Additional OCI Regions

  1. Open the OCI Console using https://cloud.oracle.com.
  2. Open the navigation menu and select Identity & Security. Under Identity, select Domains. A table with a list of the identity domains appears.
  3. Select the “Default” domain. From the Default domain overview page, note the Remote Region Disaster Recovery region.
    This image shows the default domain and its remote region disaster recovery region.
  4. Click your current Region name on the top right corner and then select Manage regions. A table shows the list of Oracle Cloud Infrastructure regions to which you are subscribed or unsubscribed.
    This image shows the Manage regions option from the Region menu.
  5. Search for the Remote Region Disaster Recovery region noted earlier and Subscribe to the region. To subscribe to a region, select the Actions menu next to the region and then select Subscribe. You can also refer to OCI paired Disaster Recovery region to find the Remote region disaster recovery region for your Home Region.

Note:

It could take several minutes to subscribe to a new region.

Verifying Default Identity Domain Replication

Identity domain replication is always enabled for the Default Identity Domain, and the Default Identity Domain automatically replicates to all regions to which the tenant is subscribed.
  1. Click your current Region name on the top right corner to see the list of regions subscribed in the OCI tenancy. When you subscribe to a new region, the default identity domain automatically replicates to that region and you will see the "Replicating" status from the Region menu as shown below.
    This image shows the Replicating status on the Region menu.

Note:

Allow the default domain replication to complete before enabling replication for additional domains.

Verify the "Replicating" status no longer appears on the Region menu. If it no longer appears, this indicates the default domain replication to the newly subscribed region has completed.

You cannot replicate an additional domain to a subscribed region without first completing the default domain replication to that subscribed region.

Additional OCI IAM Identity Domains - Identity Domain Replication

Prerequisites

  • Ensure that the OCI tenancy is subscribed to the OCI paired Disaster Recovery region to which you want to replicate the Identity Domain.
  • The default domain replication to the subscribed region must be completed before replicating an additional OCI IAM Identity domain to that region.
Follow the below steps to enable OCI IAM Identity Domain Replication for additional OCI IAM Identity Domains.
  1. Open the OCI Console using https://cloud.oracle.com.
  2. Open the navigation menu and select Identity & Security. Under Identity, select Domains.
  3. On the Domains list page, select the name of the identity domain you want to replicate.
  4. Select Actions and then select Enable remote region disaster recovery.
    This image shows the
  5. Select Confirm to enable remote region disaster recovery.
    This image shows the Confirm button to enable remote region disaster recovery.
  6. The Remote region disaster recovery status for the Identity Domain will initially appear as "Enabling." Upon the successful completion of the replication process, this status will transition to "Enabled."
    This image shows the UAT-Domain page with "Enabling" status for remote region disaster recovery.
    This image shows the UAT-Domain page with "Enabled" status for remote region disaster recovery.