Oracle Cloud Infrastructure Documentation

Creating a Dynamic Group

Create a dynamic group in IAM.

  1. Open the navigation menu and click Identity & Security. Under Identity, click Domains.
  2. Select the identity domain you want to work in and click Dynamic Groups.
  3. Click Create dynamic group.
  4. Enter the following information:
    • Name: A unique name for the group. The name must be unique across all groups in your tenancy (dynamic groups and user groups). You can't change the name later. Avoid entering confidential information.
    • Description: A friendly description.
  5. Enter the Matching rules. Resources that meet the rule criteria are members of the group.
    • Rule 1: Enter a rule following the guidelines in Writing Matching Rules to Define Dynamic Groups. You can manually enter the rule in the text box or launch the rule builder.

    • Enter additional rules as needed. To add a rule, click +Additional rule.

  6. To assign tags to the group, click Show advanced options and enter the tagging details.
    If you have permissions to create a resource, then you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you're not sure whether to apply tags, skip this option or ask an administrator. You can apply tags later. You can apply tabs later.
  7. Click Create.

    The matching rule syntax is verified, but the OCIDs are not. Be sure that the OCIDs you enter are correct.

To give the dynamic group permissions, you need to write a policy. See Writing Policies for Dynamic Groups.