This topic describes the systematic instructions on identity and security.

OCI Identity and Security refers to the Identity and Access Management (IAM) capabilities within Oracle Cloud Infrastructure (OCI). It enables users to control who can access which resources in their cloud environment, effectively managing user identities and their associated security permissions.

Figure 2-2 Identity and Security

Description of "Figure 2-2 Identity and Security"

Follow the steps below to configure network and security settings:

1. Create a new compartment by following the standard process.
   • Copy and note the Compartment’s OCID. This information is required for creating source and target network path.
   • Note the Compartment Name, as this information is required for configuring the security policies.

   Figure 2-3 Compartment Information

   
   

   
   Description of "Figure 2-3 Compartment Information"

   
   
2. Create the security policies that will allow the Oracle to create the Public Endpoint in the compartment.

   Figure 2-4 Policies

   
   

   
   Description of "Figure 2-4 Policies"

   
   
3. Create the following policies:
   OCI Policies

   allow service ORACLE_INDUSTRY_SAAS to manage vnics in compartment 
   <Customer Compartment Name> allow service ORACLE_INDUSTRY_SAAS to use subnets in compartment 
   <Customer Compartment Name> allow service ORACLE_INDUSTRY_SAAS to use network-security-groups in compartment 
   <Customer Compartment Name> allow service ORACLE_INDUSTRY_SAAS to inspect work-requests in compartment 
   <Customer Compartment Name> 

   Note:

   1. Policy names must be unique across compartments.
   2. The Policy Builder wizard does not support all valid policy types; therefore, the user should use Show Manual Editor for full configuration.
   3. Replace <Customer Compartment Name> with your actual compartment name.

   Figure 2-5 Oracle Access

   
   

   
   Description of "Figure 2-5 Oracle Access"