Resource Types and Permissions of Asset Discovery
Review the table that provides a list of Oracle Cloud Migrations external asset discovery resource types and associated permissions.
You can write a policy with a <verb>
<resource-type> statement for each of the individual resource
types.
| Resource Type | Permissions |
|---|---|
| ocb-asset-sources |
|
| ocb-asset-source-connectors |
|
| ocb-discovery-schedules |
|
| ocb-connectors |
|
Details About Verb + Resource Type Combinations of Asset Discovery
Review the permissions and API operations covered by each verb for the external asset discovery resources.
The level of access is cumulative as you go from inspect to
read to use to manage. A plus sign
(+) in a table cell indicates incremental access when compared to the
preceding cell.
For information about granting access, see Permissions.
This table lists the permissions and the APIs that are fully covered by the permissions,
for the ocb-asset-sources resource.
| Verbs | Permissions | APIs Covered | Description |
|---|---|---|---|
inspect |
OCB_ASSET_SOURCE_INSPECT |
ListAssetSources |
List of all asset sources in a compartment. |
read |
|
|
Get the asset source. Get known connections to the asset source by the asset source ID. |
use |
|
|
Update the asset source. Trigger work request to gather metadata for the asset source and push it to inventory. Also, report identifiers (AssetHandles) back to Asset Discovery. |
manage |
|
|
Create an asset source. |
manage |
|
|
Delete a specific provisioned asset source. |
manage |
|
|
Move a resource into a different compartment. |
This table lists the permissions and the APIs that are fully covered by the permissions,
for the ocb-asset-source-connectors resource.
| Verbs | Permissions | APIs Covered | Description |
|---|---|---|---|
inspect | OCB_ASSET_SOURCE_INSPECT | ListAssetSources | List all asset sources in a compartment. |
read |
|
| Get the asset source. Get known connections to the asset source by the asset source ID . |
use |
|
|
Report batch operation for discovered AssetHandles for this source. Report connection status for the asset source. |
This table lists the permissions and the APIs that are fully covered by the permissions,
for the ocb-discovery-schedules resource.
| Verbs | Permissions | APIs Covered | Description |
|---|---|---|---|
inspect |
OCB_DISCOVERY_SCHEDULE_INSPECT |
ListDiscoverySchedules |
List all the discovery schedules. |
read |
|
|
Get information about a specific discovery schedule. |
use |
|
|
Update a specific discovery schedule. |
manage |
|
|
Create a discovery schedule. |
manage |
|
|
Delete a specific discovery schedule. |
manage |
|
|
Move a specific discovery schedule into a different compartment. |
This table lists the permissions and the APIs that are fully covered by the permissions,
for the ocb-connectors resource.
| Verbs | Permissions | APIs Covered | Description |
|---|---|---|---|
read |
|
|
Get connector by ID. |
read |
|
|
Get connector configuration. List asset sources related to the connector List asset handles for assets discovered by provided filter. List tasks assigned to a connector. |
use |
|
|
Update the task state. |