Compute Administrator

OCI IAM · Compute · Manage

Verb Tier

Manage

Categoria

Compute

Escopo

Compartment

Privilegiado

Sim

Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.

Descrição

Full control over compute instances, images, instance pools and related resources.

Verb: Manage

Full CRUD — create, read, update, delete and administer the resource.

Exemplo de Policy Statement

Allow group ComputeAdmins to manage instances in compartment Production

Substitua o nome do grupo e compartimento conforme sua estrutura OCI.

Resource Types

instancesimagesinstance-configurationsinstance-poolsvolume-attachments

Permissões

  • Launch/terminate compute instances
  • Manage custom images
  • Create instance pools and configurations
  • Attach/detach volumes and VNICs

Verb Actions(11)

INSTANCE_CREATE
INSTANCE_DELETE
INSTANCE_UPDATE
INSTANCE_ACTION
IMAGE_CREATE
IMAGE_DELETE
INSTANCE_POOL_CREATE
INSTANCE_POOL_DELETE
VNIC_ATTACHMENT_CREATE
VOLUME_ATTACHMENT_CREATE
BOOT_VOLUME_ATTACHMENT_CREATE

Policy Statement (JSON)

{
  "policyName": "Compute Administrator",
  "statements": [
    "Allow group ComputeAdmins to manage instances in compartment Production"
  ],
  "compartment": "compartment",
  "resourceTypes": [
    "instances",
    "images",
    "instance-configurations",
    "instance-pools",
    "volume-attachments"