Oracle Cloud Infrastructure Documentation

About Setting Up Users and Groups

Setting up users and groups for access to Oracle Visual Builder differs depending on whether or not your cloud account uses identity domains.

  • For a cloud account in a region updated to use identity domains prior to the creation of the cloud account, users and groups are set up in only Oracle Cloud Infrastructure Identity and Access Management (IAM). You do not use Oracle Identity Cloud Service (IDCS) or federation.
  • For a cloud account in a region not yet updated to use identity domains prior to the creation of the cloud account, users and groups are set up in IDCS and Oracle Cloud Infrastructure IAM, linked using federation.

To determine whether or not your cloud account uses identity domains, open the Oracle Cloud Infrastructure navigation menu and click Identity & Security. Under Identity, check for Domains:

The following table outlines the differences between the two configurations.
Cloud Accounts That Use Identity Domains Cloud Accounts That Do Not Use Identity Domains
Users and groups are configured in only Oracle Cloud Infrastructure IAM.

Users and groups are configured in Oracle Cloud Infrastructure IAM and IDCS, linked through federation. See Understanding Oracle Visual Builder Federation.

Note: Read only users can be assigned to an Oracle Cloud Infrastructure group only and not to an IDCS group.

The Oracle Cloud Infrastructure IAM service provides a single unified console for managing users, groups, dynamic groups, and applications in domains. Oracle Cloud Infrastructure IAM must be federated with IDCS for your tenancy.
Provides Single Sign-On to more applications using a single set of credentials and a unified authentication process. Requires separate federated credentials for IDCS.
The Federation page does not list any IDCS entries. The Federation page lists the primordial IDCS type that is automatically federated as part of the cloud account creation.