Verb Tier
ManageCategoria
IdentityEscopo
Tenancy
Privilegiado
Sim
Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.
Descrição
Configure SAML 2.0 identity providers and manage federated user group mappings.
Verb: Manage
Full CRUD — create, read, update, delete and administer the resource.
Exemplo de Policy Statement
Allow group FederationAdmins to manage identity-providers in tenancySubstitua o nome do grupo e compartimento conforme sua estrutura OCI.
Resource Types
identity-providersidp-group-mappings
Permissões
- Add/remove SAML identity providers
- Configure group mappings
- Manage federation metadata
Verb Actions(7)
IDENTITY_PROVIDER_CREATEIDENTITY_PROVIDER_UPDATEIDENTITY_PROVIDER_DELETEIDP_GROUP_MAPPING_CREATEIDP_GROUP_MAPPING_DELETEIDENTITY_PROVIDER_READSAML_METADATA_UPDATEPolicy Statement (JSON)
{
"policyName": "Federation Administrator",
"statements": [
"Allow group FederationAdmins to manage identity-providers in tenancy"
],
"compartment": "tenancy",
"resourceTypes": [
"identity-providers",
"idp-group-mappings"
],
"verbLevel": "Manage"
}Policies Relacionadas — Identity