Identity domains are the next generation of IDCS instances. Oracle is merging the capabilities of Oracle Identity Cloud Service (IDCS) into the native Oracle Cloud Infrastructure Identity and Access Management (OCI IAM) service. IDCS will no longer exist as a separate service in the coming months, but all features and functionality will continue to exist as part of OCI IAM. The migration to OCI IAM will introduce identity domains.
In this blog, we will take a brief look at what OCI IAM is, what are identity domains & how migration will take place to OCI IAM.
What is OCI IAM?
OCI IAM is the access control plane for Oracle Cloud. The OCI-native authentication service and a policy engine for OCI and Oracle Cloud Applications have been used to manage access to OCI resources such as networking, compute, storage, and analytics.
Read more about OCI IAM…
Oracle will soon be announcing new service capabilities for the OCI IAM service offering broader IAM features and capabilities. As part of this new service release, all features and functionality of the existing Oracle Identity Cloud Service (IDCS) will be merged into OCI IAM.
As a native OCI service, customers will see improved performance and scale, immediate availability in more global regions, and a new cross-region disaster recovery feature. Best of all, the migration to OCI IAM will be seamless and automatic without any loss of existing capabilities or features, including managing access across numerous third-party applications.
Introduction To Identity Domains: OCI IDCS to OCI IAM Migration
The migration to OCI IAM will introduce identity domains. Identity domains are the next generation of IDCS instances (stripes). Each existing IDCS instance will become an identity domain. These domains are like other OCI resources. As an administrator, you can create, move, tag, and delete an identity domain.
- Each OCI IAM identity domain represents a stand-alone identity and access management solution.
- Each identity domain represents a different user population, but certain use cases may require users to exist in multiple domains.
- Identity domains each have their own settings, configurations, and security policies to ensure optimal security.
- OCI IAM is an Identity-as-a-Service (IDaaS) solution with the flexibility to cover virtually any IAM use case across employees, partners, and consumers.
OCI IAM Identity Domain Key Features:
OCI IAM identity domains offer many new features which will help customers and some of the key add-ons are:
- Sign-on with flexible authentication options
- Seamless user experience and self-service
- Easy administration of users, groups, and access
- Developer-friendly APIs and sample code
- Broad and flexible application coverage
- Built-in reporting and auditing on activity and risk
- Customize and configure to meet your specific requirements
All OCI tenancies are now provisioned with an included identity domain providing an advanced set of IAM capabilities, at no additional cost, that provides features to securely authenticate users and manage access to OCI resources such as networking, compute, and storage. Customers can optionally upgrade their domain type to manage access to non-Oracle applications whether SaaS-delivered, cloud-hosted or on-premises.
OCI IAM Identity Domain: Console Changes
Now since this migration is taking place there are a few changes in the Oracle Cloud Console. Now in the new console User, Groups, Federations, Dynamic Groups, etc are now clubbed in as Identity Domain under Identity & Security.
Watch this [VIDEO] OCI IAM Identity Domain – Console Changes
Note: IDCS admin console is deprecated for new & migrated accounts and users will be redirected to the OCI console.
OCI IAM is built into Oracle Cloud Infrastructure (OCI)
As a native service of OCI, OCI IAM, with identity domains, will be available in all Oracle Cloud global regions, new regions as they’re launched, and Oracle Dedicated Region Cloud@Customer deployments. It provides support for local data residency requirements, architected-in high availability in each region, cross-region disaster recovery, and meets high scale and performance requirements.
OCI IAM now provides a SaaS-delivered Identity and Access Management service with cloud scale and performance, a holistic enterprise IAM feature set, and a tremendous value proposition regardless of whether you’re subscribed to any other Oracle services.
To know more in detail about the changes and official migration of OCI IDCS to OCI IAM read the official document
Related/References
- Identity Domain Overview: Oracle Docs
- Migrating to OCI IAM from IDCS
- [Video] OCI IAM-Identity Domains Overview
- [Video] OCI IAM-Console Changes
- 1Z0-1072-21 | Oracle Cloud Infrastructure 2021 Architect Associate
- IAM In OCI – User, Groups, Compartment, Policy, Tags, Federation & MFA
Begin Your Cloud Journey
Begin your journey towards becoming a Certified Oracle Cloud Infrastructure Architect and earning a lot more in 2022 by joining our FREE CLASS. You will also know more about the Roles and Responsibilities, Job opportunities for OCI Architects in the market, and what to study Including Hands-On labs you must perform to clear the Oracle Cloud Architect Associate Certification (OCI) certification exam by registering for our FREE Masterclass.
Click on the below image to Register Our FREE Class on Master Oracle Cloud (OCI) and Get a Higher Paying Job!
Leave a Reply