Oracle Cloud Infrastructure Documentation

Set Up Users and Groups

After your service instance is successfully created, set up your users and groups.

As a best practice, you should create groups based on the roles in your organization, which generally fall into typical organization roles. Then assign the appropriate user roles to those groups to give them access to the features they need. Finally, add users to those groups to automatically assign users the appropriate user roles.

These are the main steps:

  1. Create Groups for Your Organization
  2. Assign Roles to Groups
  3. Add Users
  4. Assign Users to Groups

Typical Organization Roles

When you create users, you’ll give them the application roles needed to perform their tasks in Oracle Content and Experience. These users will typically fall into one of the following organization roles (or user types) and will require the listed application roles.

You can create groups for your organization roles and assign the listed user roles to those groups. Then you can add users to those groups to automatically assign them the appropriate user roles.

Organization Role Application Roles Needed
Anonymous User

Anonymous users are consumers engaging with your company through your public website, mobile site, or other digital experiences to learn about your company offerings. Anonymous users can interact with your public website, downloading documents or making a purchase.

  • Anonymous users don’t need a user account or any user roles.
Visitor

Visitors are also consumers engaging with your website, mobile site, or other digital experiences to learn about your company offerings. Like anonymous users, visitors can interact with your public website, downloading documents or making a purchase, but they can also interact with specified secure sites and sign in to services that your company provides.

  • Sites Visitor
Employee

Employees share documents with colleagues and view documents shared with them. They collaborate through shared conversations. They can create team sites or partner sites from prebuilt standard templates.

  • Standard User
Content Contributor

Content contributors write articles that will be published to your sites, possibly about one of your products or a certain area of your business. These articles (in the form of content items) include images, videos, and other digital assets that make it easy for your customers to understand product features and specs. Content contributors also share and collaborate like an employee. A content contributor is a user with a Contributor role within at least one repository.

  • Enterprise User
Content Administrator/Content Translator

Content administrators are responsible for the quality of content related to a product. They review submitted content, ensuring it’s valid and accurate, and then publish this content. They can also create new content types and taxonomies as needed for your sites.

Content translators also administer content. They submit content to the translation vendor, proofread returned content, and sometimes translate articles manually.

Content administrators also share and collaborate like an employee.

  • Content Administrator
  • Enterprise User
Repository Administrator

Repository administrators organize content authoring and publishing, which requires setting up asset repositories, managing content editors’ roles and permissions, viewing content metrics, and configuring content workflows, publishing channels, and localization policies that your company uses to deliver experiences. They interact with back-end developers to define data or content integration requirements. They also share and collaborate like an employee. A repository administrator is a user with a Manager role within at least one repository.

  • Repository Administrator
  • Enterprise User
Site Administrator

You can limit site, template, and component creation to only site administrators. Site administrators create and manage standard and enterprise sites. They might ask the system administrator to install the default site templates; ask a developer to create custom components, themes, or templates for new sites; or ask a content architect to create new content types for content items that will be used on sites. They also share and collaborate like an employee.

  • Site Administrator
  • Enterprise User
Developer

Developers develop and configure custom components, corporate themes, and standard templates that colleagues can use for creating team sites or partner sites. They configure integrations between Oracle Content and Experience and other services. They also share and collaborate like an employee.

A developer with the Enterprise User role can also create enterprise templates.

  • Developer
  • Enterprise User
Service Administrator

Service administrators configure and manage your Oracle Content and Experience service. They can integrate Oracle Content and Experience with other business services and access operational analytics to monitor key usage metrics for the service.

  • Service Administrator
  • Standard or Enterprise User

There are additional users involved in running Oracle Content and Experience, such as the Integration User and the Storage Administrator, but these are internal users, not actual people. You’ll also have a Cloud Account Administrator, but this user is automatically created when you sign up for Oracle Cloud. See Application Roles in Administering Oracle Content and Experience.

Create Groups for Your Organization

As a best practice, you should create groups based on the roles in your organization, then assign the appropriate user roles to those groups to give them access to the features they need. Finally, add users to those groups to automatically assign users the appropriate user roles.

To create groups:

  1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
  2. In the Infrastructure Console, click Navigation menu icon on the top left to open the navigation menu, click Identity, then click Federation. You might need to use the scroll bar on the left to scroll down to see the menu option.
  3. On the Federation page, click the link to the Oracle Identity Cloud Service Console. This opens the IDCS Console in a new window.
  4. In the IDCS Console, click Navigation menu icon, and then click Groups.
  5. To create a group, click Add.
  6. Enter a name and description for the group that makes clear to others what the group is used for.
  7. To allow users to request access to this group, click User can request access.
  8. Click Finish.

Assign Roles to Groups

After creating groups for your organization roles, assign the appropriate user roles to those groups to give them access to the Oracle Content and Experience features they need.

To assign roles to groups:

  1. If you're not already in the Oracle Identity Cloud Service Console:
    1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
    2. In the Infrastructure Console, click Navigation menu icon on the top left to open the navigation menu, click Identity, then click Federation. You might need to use the scroll bar on the left to scroll down to see the menu option.
    3. On the Federation page, click the link to the Oracle Identity Cloud Service Console. This opens the IDCS Console in a new window.
  2. In the IDCS Console, click Navigation menu icon, and then click Applications.
  3. Open your Oracle Content and Experience application.
  4. Click the Application Roles tab.
  5. Next to the role you want to assign, click Action menu icon, and then select Assign Groups.
  6. Find and select the group you want, and then click Assign.

    For a list of typical organization roles and the user roles they need, see Typical Organization Roles. For a description of the predefined roles in Oracle Content and Experience, see Application Roles in Administering Oracle Content and Experience.

Add Users

Before using your system, you need to add users, either by importing them or creating them individually.

If your company uses single sign-on (SSO), you’ll want to enable SSO before adding users.

To add users:

  1. If you're not already in the Oracle Identity Cloud Service Console:
    1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
    2. In the Infrastructure Console, click Navigation menu icon on the top left to open the navigation menu, click Identity, then click Federation. You might need to use the scroll bar on the left to scroll down to see the menu option.
    3. On the Federation page, click the link to the Oracle Identity Cloud Service Console. This opens the IDCS Console in a new window.
  2. In the IDCS Console, click Navigation menu icon, and then click Users.
  3. Add users using one of the following methods:
    • To import users, you need to a create comma-separated values (CSV) file, and then click Import. See Importing User Accounts in Administering Oracle Identity Cloud Service.
    • To create a user, click Add. See Creating User Accounts in Administering Oracle Identity Cloud Service.

Assign Users to Groups

Assign users to groups to automatically give them the appropriate roles and permissions for Oracle Content and Experience.

To assign users to groups:

  1. If you're not already in the Oracle Identity Cloud Service Console:
    1. Sign in to Oracle Cloud as the cloud account administrator. You can find your account name and login information in your welcome email.
    2. In the Infrastructure Console, click Navigation menu icon on the top left to open the navigation menu, click Identity, then click Federation. You might need to use the scroll bar on the left to scroll down to see the menu option.
    3. On the Federation page, click the link to the Oracle Identity Cloud Service Console. This opens the IDCS Console in a new window.
  2. In the IDCS Console, click Navigation menu icon, and then click Groups.
  3. Open the group you want to assign users to.
  4. Click Assign.
  5. Select the users you want to add, and then click OK.

After deploying your service, creating groups, assigning roles, adding users, and assigning users to groups, you have a few main tasks to perform in the Oracle Content and Experience web interface to get Oracle Content and Experience up and running. See What to Do Next.