Managing Access to Artifact Registry
To use Artifact Registry, an administrator must grant you access to Artifact Registry resources through Identity and Access Management (IAM) policies , whether you're using the Console or the REST API with an SDK, CLI, or other tool.
To get started with OCI resources, an administrator must set you up with a user ID and add that ID to a user group . The administrator then assigns group access to resources through IAM policies . You get access to all the resources available to your group.
If you perform an action and get a message that you don’t have permission or are unauthorized, confirm with an administrator the type of access you were granted and which compartment you’re supposed to work in.
For example, the following policy gives permission to users in the group artifact-admins
to create, update, and delete all repositories and artifacts in the compartment sales-apps
:
Allow group artifact-admins to manage all-artifacts in compartment sales-apps
- For details about writing policies for Artifact Registry, see Artifact Registry IAM Policies.
- If you're a new administrator, see Getting Started with Policies.
- For details about writing policies for resources in other services, see Policy Reference.