Networking Service Permissions to Configure a Private Subnet

Review the policies that provide permissions to create and manage the networking components required to enable Recovery Service.

Table 2-5 Networking Service Permissions Required to Create Subnets, Security Lists, Service Gateway, and Route Tables

Operation	Required IAM Policies
Configure a private subnet in a database VCN	`use vcns` for the compartment which the VCN is in `use subnets` for the compartment which the VCN is in `manage private-ips` for the compartment which the VCN is in `manage vnics` for the compartment which the VCN is in manage vnics for the compartment which the database is provisioned or is to be provisioned in

Alternatively, you can create a policy that allows a specified group with broader access to networking components.

For example, use this policy to allow a NetworkAdmin group to manage all networks in any compartment in a tenancy.

Example 2-1 Policy for Network Administrators

Allow group NetworkAdmin to manage virtual-network-family in tenancy

Parent topic: Configuring Network Resources for Recovery Service