Configure integration with Oracle Cloud Infrastructure (OCI)

IT Asset Management (Cloud)

Complete the following configuration steps to set up groups and users and grant them permission to access Oracle Cloud Infrastructure. For more information on adding users, see Adding Users in the Oracle Cloud Infrastructure documentation.

  1. Open the Oracle Cloud Infrastructure Console, and sign in.
  2. Set up a group:
    1. Open the navigation menu and click Identity Security. Under Identity, click Domains.
    2. Select the domain for your group, for example Default.
    3. Under the Identity domain resources on the left, click Groups.
    4. Click Create group.
    5. In the Create group dialog:
      1. Name: Enter a unique name for your group, for example, "FnmsOCIReaderGroup".
        Note: The name cannot contain spaces.
      2. Description: Enter a description (required).
    6. Click Create.
  3. Set up a user:
    1. Open the navigation menu and click Identity Security. Under Identity, click Domains.
    2. Click on the domain chosen for your group, for example Default.
    3. Under the Identity domain resources on the left, click Users.
    4. Click Create user.
    5. In the First name and Last name fields of the Create user window, enter the user's first and last name.
    6. For the user to log in with their email address:
      1. Leave the Use the email address as the username check box selected.
      2. In the Username / Email field, enter the email address for the user account.

        or for the user to log in with their user name:

      3. Clear the Use the email address as the username check box.
      4. In the Username field, enter the user name that the user will use to log into the Oracle Cloud Infrastructure Console.
      5. In the Email field, enter the email address for the user account.
    7. Under Select groups to assign this user to, select the check box for the group you created, "FnmsOCIReaderGroup".
    8. Click Create.
  4. Set up reading policies:
    1. Open the navigation menu and click Identity & Security. Under Identity, click Policies.
    2. Under List Scope, ensure that you are in your root compartment.
    3. Click Create Policy.
    4. Enter a unique Name for your policy, for example, "FnmsOCIReaderPolicy".
      Note: The name cannot contain spaces.
    5. Enter a Description (required), for example, "Grants users read permissions for Oracle Autonomous Database information for all compartments".
    6. Enter the following Statements:
      1. Allow group ‘Default’/’FnmsOCIReaderGroup’ to inspect compartments in tenancy. This statement grants members of the "FnmsOCIReaderGroup" group in the “Default” domain inspect permissions for compartment information for the complete tenant.
      2. Allow group ‘Default’/’FnmsOCIReaderGroup’ to inspect autonomous-database-family in tenancy. This statement grants members of the "FnmsOCIReaderGroup" group in the “Default” domain inspect permissions for information on Autonomous databases and related resources for all compartments.
      3. Allow group ‘Default’/’FnmsOCIReaderGroup’ to read instance-family in tenancy. This statement grants members of the "FnmsOCIReaderGroup" group in the “Default” domain inspect permissions for information on Compute instance and related resources for all compartments.
      4. Allow group ‘Default’/’FnmsOCIReaderGroup’ to read compute-clusters in tenancy. This statement grants members of the "FnmsOCIReaderGroup" group in the “Default” domain read permissions for information on Compute clusters for all compartments.
    7. Click Create.

IT Asset Management (Cloud)

Current