Configuring Access to Oracle Integration Instances

Create users and grant them service roles (such as ServiceAdministrator and ServiceDeveloper) for using an Oracle Integration instance.

Note

This step is applicable only after an Oracle Integration instance has been created. See Creating an Oracle Integration Instance.

Creating an IDCS Group for Oracle Integration Access

Create an Oracle Identity Cloud Service group for Oracle Integration access..

  1. Click Navigation menu icon in the top left corner.
  2. From the Governance and Administration category, choose Identity, then Federation.
  3. Select the OracleIdentityCloudService link to view the default Oracle Identity Cloud Service identity federation.
  4. Select Groups from the Resources options.
  5. Click Create IDCS Group.
  6. Enter a name (for example, idcs-integration-users).
  7. Click Create.

Creating IDCS Users for Oracle Integration Access

You can create Oracle Identity Cloud Service users for mapping them to Oracle Cloud Infrastructure Identity and Access Management identities.

  1. Select Users from the Resources options.
  2. Click Create IDCS User.
  3. Complete the fields to identify the user. In the Groups field, select the IDCS group you created (for example, idcs-integration-users).
  4. Click Create.
    A message is displayed that the user was created. Optionally, click the Email Password Instructions button to email a change password link to the new user.
    The new user is displayed in the table of users.

Creating an Oracle Cloud Infrastructure Group for Oracle Integration Access (Optional)

Create a group in Oracle Cloud Infrastructure to map it to your previously created IDCS group.

Follow this step and its two subsequent steps only if you want to grant these users read only access to One Console. See Configuring Access to Oracle Integration Instances.

  1. Click Navigation menu icon in the top left corner.
  2. From the Governance and Administration category, choose Identity, then Groups.
    The Groups screen is shown.
  3. Click Create Group.
  4. In the Create Group screen, assign a name to the group that differentiates it from the IDCS group (for example, oci-integration-users), and enter a description.
  5. Click Create.

Mapping the IDCS and Oracle Cloud Infrastructure Groups for Oracle Integration Access (Optional)

Map your Oracle Cloud Infrastructure user group to your previously created IDCS group.

  1. Click Navigation menu icon in the top left corner.
  2. From the Governance and Administration category, choose Identity, then Federation.
  3. On the Federation page, select the OracleIdentityCloudService link.
  4. From the Resources options, choose Group Mapping.
  5. Click Edit Mapping.
  6. In the Edit Identity Provider dialog, click Add Mapping at the bottom.
  7. Select your IDCS group in the Identity Provider Group field (for example, idcs-integration-users) and your Oracle Cloud Infrastructure group in the OCI Group field (for example, oci-integration-users).
  8. Click Submit.

Creating an Oracle Cloud Infrastructure Policy for Oracle Integration Access (Optional)

Create a policy to grant a group of users read only permission to Oracle Integration instances within a specified compartment.

  1. Click Navigation menu icon in the top left corner.
  2. From the Governance and Administration category, select Identity, then Policies.
  3. In the Compartment field, select your compartment.
  4. Click Create Policy.
  5. In the Create Policy window, enter a name (for example, UsersGroupPolicy) and a description.
  6. Complete the policy's Statement field, entering your Oracle Cloud Infrastructure group name and compartment name..
    • Policy: allow group oci-integration-users to read integration-instance in compartment OICCompartment

    • Syntax: Allow group <group_name> to <verb> <resource-type> in compartment <compartment-name>

    This policy statement allows the oci-integration-users group to read the integration-instance in compartment OICCompartment. The read verb provides read only access to a resource.

    Want to learn more about policies? See How Policies Work and Policy Reference, or click Help in the window.

  7. Click Create.
    The policy statement is validated and syntax errors are displayed.