Skip to Main Content
Access provisioning in OCI using Oracle Access Governance

About This Workshop

Youtube Video

About This Workshop
Oracle Access Governance is a comprehensive governance solution that supports various provisioning methods, including access requests and approvals, role-based access control (RBAC), attribute-based access control (ABAC), and policy-based access control (PBAC). The service features a conversation-style user experience, offering deep visibility into access permissions across the entire enterprise. It facilitates dynamic, periodic, and automated event-based micro certifications, such as an access review triggered by a job code or manager change. Additionally, it enables near real-time access reviews, providing detailed recommendations with options for reviewers to accept or review an entitlement based on the identified level of risk.

This workshop walks you through the steps to setup OCI integration and perform group and application role provisioning in OCI. You will also explore the Who Has Access To What functionality through the enterprise-wide browser. In this workshop, as an application owner, you will create several Access Governance objects including Identity Collections, Approval workflows, Access Bundles, Roles, and Policies. The workshop walks you through the steps involved in requesting, approving, and getting the groups and roles provisioned in OCI. You will also learn how to configure and use Access Guardrails.

Workshop Info

3 hours
  • Introduction
  • Get Started
  • Lab 1: Deploy Infrastructure using Terraform
  • Lab 2: Setup and Configure Oracle Access Governance service instance 
  • Lab 3: Integrate Oracle Access Governance with OCI IAM
  • Lab 4: Mark the Identities
  • Lab 5: Review Who has Access To What
  • Lab 6: Define Access Controls for OCI IAM and Group Provisioning
  • Lab 7: Provision Group Access
  • Lab 8: Provision Application Role in OCI
  • Lab 9: Configure Access Guardrails
  • Lab 10: Cleanup the Environment
  • Familiarity with Oracle Cloud Infrastructure (OCI) IAM is desirable, 
  • Some understanding of OCI IAM user and groups is helpful
  • Familiarity with OCI PaaS Services and application roles is helpful

Other Workshops you might like