Only identity domain administrators can create user accounts, and only in the identity domains that they are assigned to manage.

1. Sign in to My Services. Be sure to specify the appropriate identity domain.
2. Click Users.
3. Click the Users tab.
4. Click Add.
5. Enter the following details in the Add User dialog box:

   • First Name: Enter the user's first name.

   • Last Name: Enter the user's last name.

   • Email: Enter a valid business email address in standard format. For example, johndoe@example.com. Special characters are allowed within email addresses. If you use an improperly formatted email address, then you'll get an error message. The email address shouldn’t be longer than 71 characters.

   • Use email as user name: The user name is the unique identifier for the user. The user enters this value in the User Name field when signing in to Oracle Cloud.

     If this check box is selected, then the system automatically makes the user name the same as the email address unless the user name is currently in use or had previously been in use within the current domain. For these cases, the system adds a number to the email address to create a unique value for the user name.

   • User Name: If you deselect the Use email as user name check box, then you can enter a unique user name for the user. The user name, along with the password and the name of the identity domain, define a user's sign-in credentials. The User Name field accepts spaces between characters, but it doesn’t allow special characters such as !#$%'*+/=?^`{|}~&.

   • Manager Email (optional field): Enter the email address of the user’s manager. You can also search for the manager’s email address by clicking the search (magnifying glass) icon and then entering a part of the manager’s email address. If you specify the same email address for both the user and the manager, then you’ll get an error message.

6. Assign one or more roles to this user. Roles control access to applications, resources, and services.
   1. Simple Role Selection
      Use this section to assign basic roles to the user, such as the identity domain administrator role, or the service-specific user or administrator roles.

      • To assign an identity domain administrator role, select the Identity Domain Administrator check box.

      • To assign service-specific roles, select a service from the Service list.

        • If you’ve subscribed to an entitlement to create instances of an Oracle Cloud Service, then you can assign a entitlement administrator role to the user. Select the Entitlement Administrator role check box. An entitlement administrator can create or delete service instances.

        • If your service entitlement administrator has created multiple instances of an Oracle Cloud Service, then you must select a specific service instance from the Instance list before selecting a role. You can select one or more instances. Purged or canceled instances aren’t displayed in the list.

        • If you’ve subscribed to an entitlement to create instances of bundles of Oracle Cloud Service, then you can assign a bucket entitlement administrator role to the user. For example, if you selected metered Oracle Java Cloud Services (JAVAMB) from the Service list, then the Bucket Entitlement Administrator check box is displayed. Select this check box to assign the role to the user.

      • To assign an administrator role for the selected service or instance, select the Service Instance Administrator check box. To assign a non-administrator role such as user, developer, or planner for the selected service or instance, select the Other Roles check box.

        Note:

        The service-specific roles are enabled for selection only after you select a specific service or an instance. You can add more service-specific or instance-specific roles to the user by repeating the previous steps.

      • To assign the selected roles to the user, click >>. To remove a role, clear the check box next to the role you want to remove and click the clear link. To remove all the roles, simply click the clear link.

        Note:

        The >> button is enabled only after you select a role.

   2. Advanced Role Selection
      Expand this section to add advanced roles to the user. Roles are instance-specific. Some services, such as Oracle Human Capital Management Cloud (HCM) Service, have two instances: one instance for testing and one instance for production. To allow a user to access both the test instance and the production instance, assign a role that belongs to each instance.

      You can select one or more roles, and then use the left and right arrows to move the roles back and forth between the Available Roles column and the Selected Roles column.

      • To select a single role, click the role.

      • If you’ve subscribed to an entitlement to create instances of bundles of Oracle Cloud Service, then you can assign a bucket entitlement administrator role to the user. Select the entitlement administrator role from the list. For example, to assign a bucket entitlement administrator role for metered Oracle Java Cloud Services (JAVAMB), select the JAVAMB Entitlement Administrator role. A bucket entitlement administrator can also create or delete service instances.

      • To select a consecutive group of roles, click the first role you want in the group, press and hold down the Shift key, and then click the last role you want in the group.

      • To select non-consecutive roles, press and hold down the Ctrl key, and then click each role you want to select.

      • To assign all available roles to the user, click >>.

   Note:

   Simple and advanced role selections are mutually exclusive; you can’t switch between them. Use one or the other for role assignments.

7. Click Add.
   The system adds an account for the user and displays a message if the user account was created successfully.