Frequently Asked Questions for Oracle Identity Cloud Service Federated Users
When you sign up for Oracle Cloud Infrastructure, your account is automatically federated with Oracle Identity Cloud Service as your identity provider. This topic answers some frequently asked questions about the federation.
What resources are created in Oracle Identity Cloud Service?
The following resources are created in Identity Cloud Service:
This SAML application that creates the federation with Oracle Cloud Infrastructure.
A supporting application for the federation.
Do not delete these applications.
This group is mapped to the Administrators group in Oracle Cloud Infrastructure. Members of this group have full administrator privileges in Oracle Cloud Infrastructure.
A default administrator user (e.g., email@example.com) who is a member of the OCI_Administrators group.
What resources are created in Oracle Cloud Infrastructure?
The following resources are created in Oracle Cloud Infrastructure:
The default administrator created in Oracle Identity Cloud Service and the local default administrator created in Oracle Cloud Infrastructure exist independently in their respective identity systems. Ensure that you manage passwords for them separately.
Why is my account federated with Oracle Identity Cloud Service?
Oracle Identity Cloud Service is the identity provider for multiple Oracle services. Federating Oracle Cloud Infrastructure with Oracle Identity Cloud Service allows you to have a seamless connection between services, without having to create a separate username and password for each one.
Can I add a user just for Oracle Cloud Infrastructure?
Yes. If you don't want to manage the user in Oracle Identity Cloud Service, you can add a user directly to the Oracle Cloud Infrastructure IAM service. See Adding Users. Using this procedure, you can create users who can sign in directly to the Oracle Cloud Infrastructure Console. Users created with this procedure do not have access to any other Oracle services.
How do I find the client ID and client secret?
To edit mappings of your user groups in Oracle Identity Cloud Service to user groups in Oracle Cloud Infrastructure, you'll need to supply the client ID and client secret. The client ID and client secret are stored in Oracle Identity Cloud Service. To get this information:
- Sign in to the Oracle Identity Cloud Service console.
- In the Identity Cloud Service console, click Applications. The list of trusted applications is displayed.
- Click COMPUTEBAREMETAL.
- Click Configuration.
Expand General Information. The client ID is displayed. Click Show Secret to display the client secret.