Oracle Cloud Infrastructure Documentation

Creating Self-Registration Profiles

Use self-registration profiles to create accounts in a verified or unverified state. Customize the self-registration process by specifying the user's email domains allowed when self-registering, and adding header, footer, success, and user consent text.

Using self-registration profiles, you can:

  • Create a self-registration consumer flow that allows users to create an account in a verified state. Use the REST API to turn off the activationEmailRequired option. The user can then directly sign in using a user name and password to authenticate.

  • Create a self-registration partner flow that allows users to create an account in an unverified state. Use the REST API to turn on the activationEmailRequired option so that a user receives a link in the welcome email to verify the user. After the user clicks this link, the user's state is changed to verified and the user can sign in.

  • Delete profiles using the user interface or the REST API.

  • Specify whether users are prompted and must accept a user consent before self-registering.

  • Assign groups to a profile so that users are assigned to all the groups that are part of that profile.

  • Specify the user's email domains allowed when accessing the self-registration process. Only users with access to these specific email domains are allowed to register.

  • Customize the self-registration login page with your header and footer logos.

  • Customize the header, footer, success, and user consent text.

Required Policy or Role

To create self-registration profiles, you must have one of the following access grants:
  • Be a member of the Administrators group
  • Be granted the Identity Domain Administrator role
  • Be a member of a group granted manage domains

To understand more about policies and roles, see The Administrators Group, Policy, and Administrator Roles, Understanding Administrator Roles, and Understanding Policies.

Using the Console

Creating Self-Registration Profiles

To manage self-registration for different sets of users, approval policies, and applications, create self-registration profiles for each.

  1. Open the navigation menu and click Identity & Security. Under Identity, click Domains. Select the identity domain you want to work in and click Settings and then Self registration.
  2. Click Add profile.
  3. Complete the Details section.
    • Enter a unique Profile name.
    • To require a user to accept the terms of use during self-registration, turn on the User consent required option. To hide the terms of use from the user during self-registration, turn off the option.
    • To add groups to the profile, click Assign in the Assign to group section.
    • Add the user's email domains allowed during the self-registration process in the Allowed email domains field. Enter all or leave this field blank to allow all email domains.
  4. Upload footer and header logos or keep the default logos.
  5. Complete the Self-registration content section.
    • Enter the Registration page name that you want to appear as a link on your customized login page.
    • Add header, footer, and success text or keep the default values.
    • If you have turned on the User consent required option, enter the text in the User consent text field.
    Tip

    Click Cancel to discard your changes and return to the Manage self-registration profiles page.
  6. Click Add profile.
    The Profile ID that you need for the self-registration link is created.
  7. On the Self registration page, use the action menu to activate the profile.

Next, you must construct a self-registration URL. Click the Actions menu and then Edit to edit the profile. On the Edit self-registration profile page, copy the Profile ID to construct a URL exactly like the following: https://[instancename.idcs.internal.oracle.com:port]/ui/v1/signup?profileid=[ProfileID]

If the URL is not constructed properly, you receive an error stating that your profile was not found. Verify that the syntax of the URL is correct.

This URL gives the user access to the self-registration page. After the user completes self-registration and clicks Submit, they are presented with a success page. The user must then click the link Click here to continue to go to the My Apps page. If the user does not click the link within 1 hour, the token expires and user is presented with the Login page again.

Activate and Deactivate Self-Registration Profiles

You can use IAM to activate or deactivate a self-registration profile.

  • Activate a newly created profile so that you can use it.

  • Deactivate a self-registration profile when it is no longer needed.

  1. Open the navigation menu and click Identity & Security. Under Identity, click Domains. Select the identity domain you want to work in and click Settings and then Self registration.
  2. Locate the profile you want to activate or deactivate.
  3. Click the Actions menu for that row and then:
    • Activate to activate the profile.
    • Deactivate to deactivate the profile.
  4. Confirm the action.
Editing Self-Registration Profiles

You can change some self-registration profile options when editing the profile. For example, you can assign the profile to new groups or change the allowed email domains.

  1. Open the navigation menu and click Identity & Security. Under Identity, click Domains. Select the identity domain you want to work in and click Settings and then Self registration.
  2. Locate the profile you want to edit.
  3. Click the Actions menu for that row and then Edit to edit the profile.
  4. (Optional) On the Edit self-registration profile page, make any necessary changes.
  5. Click Save changes.
Deleting Self-Registration Profiles

You can delete profiles that you aren't using.

  1. Open the navigation menu and click Identity & Security. Under Identity, click Domains. Select the identity domain you want to work in and click Settings and then Self registration.
  2. Locate the profile you want to delete.
  3. Click the Actions menu for that row and then Delete to delete the profile.
  4. Confirm the deletion.