Políticas de Oracle Autonomous Database
Muestra cómo permitir a Disaster Recovery (DR) gestionar las bases de datos de Oracle Autonomous Database Service, como Oracle Autonomous Database Serverless y Autonomous Database on Dedicated Exadata Infrastructure (Autonomous Container Database) que formen parte de la pila de aplicaciones.
Políticas para configurar mediante la entidad de recurso
For Member Type: AUTONOMOUS_DATABASE
Allow dynamic-group <Dynamic_group_Name> to manage autonomous-database-family in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> read vaults in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> read secret-family in compartment <compartment_name>
For Member Type: AUTONOMOUS_CONTAINER_DATABASE
Allow dynamic-group <Dynamic_group_Name> to manage autonomous-database-family in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update cloud-autonomous-vmclusters in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update autonomous-vmclusters in compartment <compartment_name>
Allow dynamic-group <Dynamic_group_Name> to update autonomousContainerDatabaseDataguardAssociations in compartment <compartment_name>Políticas para configurar mediante autenticación de usuario
Allow group group_name to manage autonomous-database-family in compartment compartment_nameUna política más restrictiva que permite a DR realizar únicamente operaciones de switchover y failover en bases de datos autónomas es similar a la siguiente:
Allow group group_name to update autonomous-databases in compartment compartment_namePara obtener más información sobre las políticas de Identity and Access Management (IAM) de Oracle Autonomous Database, consulte Detalles del servicio Database.
Para Autonomous Database sin servidor:
Allow group group_name to update AutonomousDatabaseDataguardAssociation in compartment
compartment_namePara Autonomous Database en infraestructura de Exadata dedicada (base de datos de contenedores autónoma):
Allow group group_name to manage autonomous-database-family in compartment compartment_name
Allow group group_name to update cloud-autonomous-vmclusters in compartment compartment_name
Allow group group_name to update autonomous-vmclusters in compartment compartment_name
Allow group group_name to update autonomousContainerDatabaseDataguardAssociations in compartment compartment_name