Verb Tier
ManageCategoria
IdentityEscopo
Tenancy
Privilegiado
Sim
Esta policy é privilegiada — concede acesso de alto impacto. Atribua apenas a grupos de administração confiáveis e monitore com Cloud Guard e Audit Logs.
Descrição
Full control over all resources in the tenancy including IAM, billing and every OCI service.
Verb: Manage
Full CRUD — create, read, update, delete and administer the resource.
Exemplo de Policy Statement
Allow group TenancyAdmins to manage all-resources in tenancySubstitua o nome do grupo e compartimento conforme sua estrutura OCI.
Resource Types
all-resources
Permissões
- Create/delete/manage any OCI resource
- Manage IAM users, groups and policies
- Access billing and cost data
- Configure federation and identity providers
Verb Actions(12)
TENANCY_MANAGEUSER_CREATEUSER_DELETEUSER_UPDATEGROUP_CREATEGROUP_DELETEPOLICY_CREATEPOLICY_DELETECOMPARTMENT_CREATECOMPARTMENT_DELETETAG_NAMESPACE_CREATETAG_NAMESPACE_DELETEPolicy Statement (JSON)
{
"policyName": "Tenancy Administrator",
"statements": [
"Allow group TenancyAdmins to manage all-resources in tenancy"
],
"compartment": "tenancy",
"resourceTypes": [
"all-resources"
],
"verbLevel": "Manage"
}Policies Relacionadas — Identity