Managing Users
Describes how to create and manage user accounts, including creating, updating, and deleting them.
For information about the number of users you can have, see IAM Identity Domain Object Limits.
- Lifecycle for Managing Users
- Creating a User
- Viewing User Details
- Editing a User
- Deleting a User
- Unlocking a User
- Resetting a User Password
- Resending an Invitation to a User to Activate their Account
- Editing a User's Capabilities
- Listing Users
- Searching for a User Account
- Changing a User's Status
- Clearing All Keep Me Signed-In Sessions for a User
- Linking a User to a My Oracle Support Account
- Assigning Applications to a User
- Removing Applications from a User
- Assigning Users to Roles
- Adding a User to a Group
- Removing Users from Groups
- Resetting Authentication Factors for User Accounts
- Generating a Bypass Code for a User
Required Policy or Role
To manage identity domain settings, you must have one of the following access
grants:
- Be a member of the Administrators group
- Be granted the Identity Domain Administrator role or the Security Administrator role
- Be a member of a group granted
manage
domains
To give this permission to non administrators, you'll need to additionally write policies like the following:
allow group GroupA to {USAGE_BUDGET_READ} in tenancy
allow group GroupA to {USAGE_BUDGET_INSPECT} in tenancy
allow group GroupA to {USAGE_BUDGET_MANAGE} in tenancy
allow group GroupA to {TENANCY_INSPECT} in tenancy
where you replace GroupA with the name of the group you want to grant the permission to.
To understand more about policies and roles, see The Administrators Group, Policy, and Administrator Roles, Understanding Administrator Roles, and IAM Policies Overview.