Autonomous Linux Policies
Use policies to control access to Autonomous Linux.
Autonomous Linux uses OS Management Hub to manage instances. Follow the OS Management Hub policy guidance for dynamic group rules and policies required for OCI instances.
In addition to setting the required OS Management Hub policies, add the following policies to allow the use of notifications in Autonomous Linux.
To allow the Autonomous Linux service to publish notifications:
Allow any-user to use ons-topics in tenancy where request.principal.type='alx-notification'
- Tenancy-level policies
-
To allow the user to create and use notification topics:
allow group <user_group> to manage ons-topics in tenancy
- Compartment-level policies (if not using tenancy-level)
-
If the tenancy administrator doesn't permit setting IAM policies at the tenancy level, you can restrict the use of Autonomous Linux resources to a compartment and its subcompartments (policies use compartment inheritance).
To allow the user to create and use notification topics in a compartment inside the tenancy:
allow group <user_group> to manage ons-topics in compartment <compartment_name>