Verb Tier
ManageCategoria
IdentityEscopo
Tenancy
Privilegiado
Sim
Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.
Descrição
Manage password policies, MFA enforcement and sign-on policies for the tenancy.
Verb: Manage
Full CRUD — create, read, update, delete and administer the resource.
Exemplo de Policy Statement
Allow group AuthPolicyAdmins to manage authentication-policies in tenancySubstitua o nome do grupo e compartimento conforme sua estrutura OCI.
Resource Types
authentication-policies
Permissões
- Set password complexity rules
- Enforce MFA requirements
- Configure sign-on policies
- Manage allowed regions
Verb Actions(6)
AUTHENTICATION_POLICY_UPDATEAUTHENTICATION_POLICY_READPASSWORD_POLICY_UPDATEMFA_TOTP_DEVICE_MANAGENETWORK_SOURCE_CREATESIGN_ON_POLICY_UPDATEPolicy Statement (JSON)
{
"policyName": "Authentication Policy Administrator",
"statements": [
"Allow group AuthPolicyAdmins to manage authentication-policies in tenancy"
],
"compartment": "tenancy",
"resourceTypes": [
"authentication-policies"
],
"verbLevel": "Manage"
}Policies Relacionadas — Identity