Oracle Cloud Infrastructure Documentation

Deactivating an Identity Domain

You might create an identity domain that you only need temporarily, for example, for testing purposes. You can deactivate the identity domain when it's not in use and then reactivate it when it's needed. An identity domain must be deactivated before it can be deleted.

The Default identity domain and the identity domain to which you’re signed in can’t be deactivated.

Before deactivating an identity domain, all Cloud, Oracle, Custom, and Enterprise applications must be deactivated. All applications created by App Services in Oracle Cloud Services (for example, AnalyticsINST-OAC1) must also be deactivated, but "entitlement" apps in Oracle Cloud Services (for example, ADWC) do not need to be deactivated.

Immediately after the administrator starts deactivating an identity domain, the identity domain moves to a de-activating state and users won't be able to authenticate at this point.

    1. Open the navigation menu and click Identity & Security. Under Identity, click Domains. Select the identity domain you want to work in.
    2. Click More Actions, and then Deactivate.
    3. Confirm the deactivation.

      The identity domain will be in an Inactive status.

  • Use the oci iam domain deactivate and required parameters to deactivate an identity domain:

    oci iam domain deactivate --domain-id domain_ocid [OPTIONS]

    For a complete list of flags and variable options for CLI commands, see the Command Line Reference.

  • Run the DeactivateDomain operation to deactivate an identity domain.