You're viewing OCI IAM documentation for new tenancies in regions that have been updated to use identity domains.

Oracle Cloud Infrastructure Documentation
Try Free Tier

Infrastructure ServicesIAM with Identity DomainsManaging ProvisioningSetting Up a Microsoft Active Directory BridgeManaging AD BridgesSet Permissions for Your Microsoft Active Directory Account

Setting Permissions to Propagate Changes from IAM to Microsoft Active Directory

Set permissions for your AD bridge service account so that you can propagate changes you have done in IAM to Microsoft Active Directory through the AD bridge.

Use your domain administrator credentials to sign in to the machine that contains your Microsoft Active Directory server.
Open a command window.
Set the Generic Write permission for the users, groups, and organizational units (OU) in the AD domain if you want to propagate the changes you have done in IAM to Active Directory.
```
dsacls <AD_Domain_Name> /I:T /g "<AD_Domain_Name>\<User/Group_Name>:GW"
```

Was this article helpful?

Oracle Cloud Infrastructure Documentation Try Free Tier

Setting Permissions to Propagate Changes from IAM to Microsoft Active Directory

Oracle Cloud Infrastructure Documentation
Try Free Tier