Identity and Access Management

The Identity Service has seeded a new sign-on policy titled 'User Category-Based Sign-On Policy,' specifically aimed at strengthening the ...

The DigitalidAdmin, DigitalidIssuer, DigitalidVerifier, and DigitalidWallet application roles are reserved by Oracle and can't be used to manage Identity ...

Customize SMS Text Message template has been deprecated. SMS text message for one-time passcode (OTP) will be in the ...

OCI IAM supports replicating identity domains to several subscribed regions. New sign-in feature improves availability of OCI ...

Use the API to enable first-time users to sign in to an OCI identity domain with their social identity ...

The /SocialIdentityProviders endpoint now supports a multi-valued custom parameter for Social Identity Provider configurations.

See Endpoint details.

Before you can save a Notifications template, you must change the Sender field.

For more information, see Modifying Notification ...

User password changes for resetting a known password or resetting a forgotten password are now validated after the user enters ...

The following services are now available in the US Government Cloud with FedRAMP Authorization:

• Big Data Service
...

Administrators can now turn on Keep me signed in to reduce the number of sign-in prompts for users. After enabling ...

We now support Oracle Enterprise Linux 8 for the Linux Pluggable Authentication Module (PAM).

See Certified Components for the ...

There are two new IAM tutorials which illustrate, using OCI IAM and Microsoft Azure AD, how to configure SSO and ...

You can now use diagnostic data reports to capture logging data for an IAM identity domain. See Diagnostic Data Report ...

Cloud Gate has updated its Block Cipher mode of operation which changes how data is encrypted. If you are using ...

IAM database passwords and tokens centralize Autonomous Database user account management in IAM. They improve security and greatly minimize the ...

The IAM service now supports identity domains for new tenancies. Identity domains are used to manage users and groups, integration ...

All services now support using network sources in policy to restrict access to their resources. A network source lets you ...

You can use time-based variables in your policies to restrict the access to resources granted in the policy to only ...

You can now write IAM policy that restricts the ability for users to create instances from custom images on an ...

You can now generate the API signing keys in the Console, from your user profile. Also, after you add an ...

The compartment explorer is now called the "tenancy explorer." There are no changes to the functionality of this feature. To ...

The Users list page now includes a Last Sign In field that displays the last date and time a user ...

The IAM service now supports setting a network source restriction for signing in to the Console. A network source lets ...

Using conditions and a set of tag variables, you can write policy to scope access based on the tags that ...

You can now use network sources (a new resource type in IAM) to restrict access to Object Storage to only ...

Previously, the compartment explorer allowed you to view all resources in a selected compartment. The enhancement added today allows you ...

You can now recover a deleted compartment. For more information, see Managing Compartments.

You can create tag defaults that require users creating resources to enter the values for tags. For more information, see ...

You can create a list of values for defined tags. When the user applies the tag, they must select a ...

You can now get a cross-region view of all resources in a single compartment using the new compartment explorer. See ...

You can now manage service roles for your Oracle Identity Cloud Service federated users directly in the Console. For the ...

You can now use variables in tag values. For more information, see Using Tag Variables.

You can now delete tags and tag namespaces. See Deleting Tag Key Definitions and Namespace for information and limitations.

The IAM service now supports Microsoft Azure AD as an identity provider. You can set up Oracle Cloud Infrastructure as ...

Oracle Cloud Infrastructure IAM service now supports encryption assertion by an identity provider. If your tenancy is federated with Microsoft ...

You can now customize the password policy rules for Oracle Cloud Infrastructure local users. When a user is created or ...

You can now move a tag namespace from the compartment it is in to a different compartment. The tag namespace ...

Oracle Cloud Infrastructure local users can now add an email address to their user profile. This email address can be ...

Tag defaults let you specify tags to be applied automatically to all resources, at the time of creation, in a ...

Oracle Cloud Infrastructure now provides an integration with Oracle Identity Cloud Service that lets you perform basic user and group ...

Users who are federated with Okta can now directly access the Oracle Cloud Infrastructure SDK and CLI, and other services ...

You can now create subcompartments inside of compartments to create hierarchies up to six levels deep. For more information, see ...

You can now delete compartments. See Deleting Compartments for information and limitations.

Cost-tracking tags are displayed in your online billing statement and allow you to filter and subtotal your costs for resources ...

The compartment list in the Console now displays only the compartments that a user is authorized to access. See Understanding ...

You can now group instances in dynamic groups based on tags. For more information, see Managing Dynamic Groups.

Previously, the credential generated by Oracle for you to use to sign in to a Swift client was called a ...

You can now apply tags to your tenancy using the Console or the API. See Managing the Tenancy.

Instances are a new principal type in IAM. You can now apply policy to groups of instances just as you ...

All new tenancies are federated with Oracle Identity Cloud Service. For more information, see

Frequently Asked Questions for Oracle ...

Tagging allows you to organize, manage, and control your cloud resources with an organizational scheme you define. See Overview of ...

You can now rename compartments that you create.

You can federate with Microsoft Active Directory to enable your users to sign in to Oracle Cloud Infrastructure using their ...