Policies for Networking Service

Shows how to allow Disaster Recovery (DR) to manage networking components for compute instances that are part of the application stack.

Policies to configure using resource principal

Allow dynamic-group <Dynamic_group_Name> to read virtual-network-family in compartment compartment_name
Allow dynamic-group <Dynamic_group_Name> to use subnets in compartment compartment_name
Allow dynamic-group <Dynamic_group_Name> to use vnics in compartment compartment_name
Allow dynamic-group <Dynamic_group_Name> to use network-security-groups in compartment compartment_name
Allow dynamic-group <Dynamic_group_Name> to use private-ips in compartment compartment_name

Policies to configure using user authentication

Allow group group_name to read virtual-network-family in compartment compartment_name
Allow group group_name to use subnets in compartment compartment_name
Allow group group_name to use vnics in compartment compartment_name
Allow group group_name to use network-security-groups in compartment compartment_name
Allow group group_name to use private-ips in compartment compartment_name

For more details about Identity and Access Management (IAM) policies for networking, refer Details for the Core Services.

Parent topic: Policies for Other Services Managed by Full Stack Disaster Recovery

Oracle Cloud Infrastructure Documentation

Policies for Networking Service