Compartment Administrator

OCI IAM · Identity · Manage

Verb Tier

Manage

Categoria

Identity

Escopo

Compartment

Privilegiado

Sim

Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.

Descrição

Full control over all resources within a specific compartment.

Verb: Manage

Full CRUD — create, read, update, delete and administer the resource.

Exemplo de Policy Statement

Allow group CompAdmins to manage all-resources in compartment Production

Substitua o nome do grupo e compartimento conforme sua estrutura OCI.

Resource Types

all-resources

Permissões

  • Manage all resources in compartment
  • Create sub-compartments
  • Assign tags to resources
  • View compartment metrics and logs

Verb Actions(9)

COMPARTMENT_MANAGE
INSTANCE_CREATE
INSTANCE_DELETE
BUCKET_CREATE
BUCKET_DELETE
VCN_CREATE
VCN_DELETE
SUBNET_CREATE
TAG_APPLY

Policy Statement (JSON)

{
  "policyName": "Compartment Administrator",
  "statements": [
    "Allow group CompAdmins to manage all-resources in compartment Production"
  ],
  "compartment": "compartment",
  "resourceTypes": [
    "all-resources"
  ],
  "verbLevel": "Manage"
}