Verb Tier
ManageCategoria
IdentityEscopo
Compartment
Privilegiado
Sim
Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.
Descrição
Full control over all resources within a specific compartment.
Verb: Manage
Full CRUD — create, read, update, delete and administer the resource.
Exemplo de Policy Statement
Allow group CompAdmins to manage all-resources in compartment ProductionSubstitua o nome do grupo e compartimento conforme sua estrutura OCI.
Resource Types
all-resources
Permissões
- Manage all resources in compartment
- Create sub-compartments
- Assign tags to resources
- View compartment metrics and logs
Verb Actions(9)
COMPARTMENT_MANAGEINSTANCE_CREATEINSTANCE_DELETEBUCKET_CREATEBUCKET_DELETEVCN_CREATEVCN_DELETESUBNET_CREATETAG_APPLYPolicy Statement (JSON)
{
"policyName": "Compartment Administrator",
"statements": [
"Allow group CompAdmins to manage all-resources in compartment Production"
],
"compartment": "compartment",
"resourceTypes": [
"all-resources"
],
"verbLevel": "Manage"
}Policies Relacionadas — Identity