Create Compartment Policies

1. Sign in to the OCI Console for your tenancy.

   Use the identity domain where Retail Data Store is deployed.

2. Click the navigation menu in the upper left corner of the OCI Console, then go to: Identity & Security → Policies.
3. In Applied Filters select the compartment for your Private Endpoint.
4. Click the Create Policy button.
5. In the Create Policy panel:

   • Name: Enter a name for the policy (for example, rds-vcn-vnic-access).

   • Description: (Optional) Provide a description (for example, Allows RDS to manage VNICs in this compartment).

   • Compartment: Select the compartment for your private endpoint.

6. Under Policy Builder, do the following:

   • Select Show manual editor.

   • Paste the following policy statements with the appropriate compartment name. These policies grant the ORACLE_INDUSTRY_SAAS service access only within the specified compartment. Be sure to replace <Your PE Compartment Name> with the exact name of your compartment.

     Allow service ORACLE_INDUSTRY_SAAS to manage vnics in compartment <Your PE Compartment Name>  
     Allow service ORACLE_INDUSTRY_SAAS to use subnets in compartment <Your PE Compartment Name>  
     Allow service ORACLE_INDUSTRY_SAAS to use network-security-groups in compartment <Your PE Compartment Name>  
     Allow service ORACLE_INDUSTRY_SAAS to inspect work-requests in compartment  <Your PE Compartment Name>