Oracle Cloud Infrastructure Documentation

Identity Lifecycle Management Between OCI IAM and Azure AD

Configure provisioning between OCI IAM and Azure AD using three different methods.

This set of tutorials will take around 30 minutes. Use the following scenarios to determine which method to use:

Tutorial 1: Configure Azure AD as the authoritative identity store to manage identities in OCI IAM using an application template from the Azure AD gallery. User accounts are pushed from Azure AD to OCI IAM.

Tutorial 2: Configure Azure AD as the authoritative identity store to manage identities in OCI IAM using the app template from OCI IAM Application Catalog. OCI IAM pulls users, groups, and group membership from Azure AD into OCI IAM.

Tutorial 3: Configuring OCI IAM as the authoritative identity store to manage identities. OCI IAM pushes users, groups, and licenses to Azure AD.

Note

These tutorials are specific to IAM with Identity Domains.

Before You Begin

To perform this set of tutorials, you must have the following:

  • A paid Oracle Cloud Infrastructure (OCI) account, or an OCI trial account. See Oracle Cloud Infrastructure Free Tier.

  • Identity domain administrator role for the OCI IAM identity domain. See Understanding Administrator Roles.
  • An Azure AD account with one of the following Azure AD roles:
    • Global Administrator
    • Cloud Application Administrator
    • Application Administrator

Tutorial 1: Azure AD as Authoritative Source to Manage Identities Using Azure AD Gallery Application

Tutorial 2: Azure AD as Authoritative Source to Manage Identities Using the OCI IAM Application Catalog

Tutorial 3: OCI IAM as Authoritative Source to Manage Identities in Azure AD