Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) is a critical component that allows you to control access and permissions for your OCI resources. When working with OCI Alarms, it’s essential to understand the IAM policies related to alarms to ensure proper access control and security. In this article, we’ll discuss the IAM policies related to OCI Alarms and how to configure them.
OCI IAM policies are statements that define who (users or groups) can access which resources and the type of actions they can perform. Policies consist of one or more statements, and each statement specifies a set of permissions using a simple, human-readable language.
Alarm-Viewers — to view alarms
Allow group Alarm-Viewers to read alarms in tenancy Allow group Alarm-Viewers to read metrics in tenancy
Alarm-Admins — to create and manage alarms
Allow group Alarm-Admins to manage alarms in tenancy Allow group Alarm-Admins to read metrics in tenancy Allow group Alarm-Admins to manage ons-topics in tenancy
Metric-Readers — to view and retrieve metrics
Allow group Metric-Readers to read metrics in compartment ABC
Restrict group “Metric-Readers” to view and retrieve metrics from only the specified Metric Namespace:
Allow group Metric-Readers to read metrics in compartment ABC where target.metrics.namespace='oci_computeagent'
Metric-Viewers — to only view metrics
Allow group Metric-Viewers to inspect metrics in compartment ABC
Metric-Developers — to publish custom metrics
Allow group Metric-Developers to use metrics in tenancy
Restrict group “Metric-Developers” to publish metrics only in the specified Metric Namespace:
Allow group Metric-Developers to use metrics in tenancy where target.metrics.namespace='mycustomnamespace'
- Oracle Database Service for Azure (ODSA) 3 – Database Services - May 1, 2023
- Oracle Database Service for Azure (ODSA) 2 – Interconnect Details - April 30, 2023
- Oracle Database Service for Azure (ODSA) 1 – Fundamentals - April 29, 2023