Creating an Identity Domain
To create an identity domain, administrators only need to know which identity domain type they want to create, in which compartment to create it, and the new identity domain administrator’s sign-in credentials, if needed. The domain types you’re allowed to create are based on your subscription. The user interface guides you through the identity domain creation process.
The default groups created in a new identity domain are All Domain Users, and Domain Administrators. During identity domain creation, if you choose to create an administrative user for the identity domain, that administrator is placed in the Domain Administrators group. The Domain Administrators group may not be deleted and there must be at least one user in the group. Unlike the Default identity domain, administrators can hide any identity domain they create from the sign-in page.
When creating additional domains, the selected region in the Console becomes the additional identity domain's home region. For example, if the selected region in the Console is Germany Central (Frankfurt) and you create an additional domain, the additional domain is created in the Frankfurt region as the home region.
Ensure that the identity domain status is Creating. Use the oci iam domain create command and required parameters to create an identity domain:
oci iam domain create --compartment-id compartment_ocid --description description --display-name display_name --home-region home_region --license-type license_type [OPTIONS]
For a complete list of flags and variable options for CLI commands, see the Command Line Reference.
Run the CreateDomain operation to create an identity domain.