I have joined K21 Academy as an Intern. Learning is the most important thing to grow your skills and being an intern I have got this opportunity to be a part of OCI certification Exam.
So, If you are a fresher like me or just starting out in cloud or even working in cloud & are planning to get certify, you can start your journey as I did.
For better learning, we need to have a definite path that would help in getting more specific about our knowledge.
In the subsequent post, I have shared my week 1 learning so far according to the “Learning Path for OCI”, on OCI Module 1: (Cloud Concepts) & Module 2: (Identity and Access Management)
Here are the basics of Module 1: Cloud OCI Concepts we have covered in week one.
What is the Cloud?
In technical terms, Cloud is defined as computing services including Storage, Server, Application, Networking, Database, etc. It is virtual memory that resides on the server but physically on the system. We have access to the cloud through some physical means but all the data and information are stored in a virtual account.
Features of Cloud Computing
There are different features of cloud computing:
- Tenancy: Every individual has its own cloud account.
- Automated: Automatic backup and system upgrades
- Access: It is accessible from any device and from anywhere
- Coherent: One can pay by their own using criteria, or it’s a pay as you go.
- Web-based: It is a modern web-based administration system.
If you want to learn more on Oracle Cloud Infrastructure (OCI): Region, AD, FD, Tenancy, Compartment, VCN, IAM, Storage Service, check our post here
Cloud Service Models
There are three cloud computing service models:
- Infrastructure as a service(IAAS): In this model, Services like Application, Data, Runtime, Middleware, and Os are managed and maintained by the client and services like virtualization, servers, storage, and networking are managed by the server
- Platform As a Service(PAAS): In this model, Services like Application and Data are managed by the client and rest are managed by the server.
- Software As a Service(SAAS): In this model, all the services are managed by some third party reducing all efforts on a host.
To know more about Cloud service model previous post on Cloud Service Model: SaaS | PaaS | IaaS
Cloud Deployment Models
- Private Model: This model provides access only to authorized users.
- Public Model: This model provides access to clients and servers.
- Hybrid Model: This model is a combination of both private and public cloud
We cover all these basics of cloud computing in our Module 1 of Oracle Cloud Infrastructure (OCI)
In week 1, We have also covered Module 2: Identity & Access Management, So here is all you need to know about IAM.
Identity & Access Management In OCI
Before getting into an explanation of IAM there are few things that need to be understood
One should know, what exactly is Identity and Access Management?
There are different resources like Compute, Block Volume, Database, DNS, Networking, Email, Storage, etc in OCI which are used to perform different functionalities. IAM is a framework that provides access to a particular cloud resource in OCI.
In cloud services, a cloud account is salient only if it has access to all the resources in that account and coherent use of accessibility.
Key Features of IAM
- It gives more secure access to an individual account.
- It includes all the tools and controls which are used to capture and record user login, removing and adding privileges in an automated pattern.
- Tenancy:-It is also called account and is created at the initial stage. It contains all the OCI resources. When a Tenancy is created a ROOT Compartment is created in Home Region
- Compartment:-Logical containers to isolate and organize OCI resources. There can be sub-compartment also called child compartment. A resource can span across multiple compartments. To know more about Compartment check our previous post Compartment In Oracle Cloud Infrastructure
- Principals:-Entity that interact with the OCI resources.
There are three principals to interact with and authenticate OCI resources.
- Root users: These are the primary account users and hold administrative powers and they can’t be deleted.
- IAM users: These are with the least privileges and can only have access to OCI resources when they are added to a group having some permission policy to tenancy and compartment.
- Group: It is a collection of users requesting the same OCI resource. One user can be a member of multiple groups.
- Instance Principle: It eliminates the need for storing user credentials for future use, Can make API calls to OCI resources like compute, VCN, Block Storage, etc.
- To identify the identity of a person.
- We can authenticate a principle either by using username and password or by API signing Keys.
- The process of identifying what actions an authenticated person can take.
- A set of defined rules or statements that decides which user or group have access to a resource in tenancy and compartment.
Region & Home Region
- Geographical location where the cloud data center resides.
- Home Region is the location where we sign up and tenancy is created first.
In module 2, we have covered all the concepts of IAM.
Apart from all the theoretical concepts we have covered until now, we need to revise our concepts through practical implementation. That’s why one should Perform Hands-on to clear the concepts for clearing [1Z0-932] Oracle Cloud Infrastructure Certification Exam.
Now It’s your turn to learn and share your thoughts & doubts in the comment box.
- FREE Masterclass on How To Become Oracle Certified Cloud Architect
- Oracle Cloud Infrastructure (OCI) Architect (1z0-932)Live Training
- Register for Oracle Cloud Trial Account
Next Task For You
Begin your journey towards becoming an Oracle Cloud [1Z0-932] Certified Architect by Joining,
FREE Masterclass on How To Become Oracle Certified Cloud Architect [1Z0-932] in 8 Weeks, And start preparing today to clear the Exam for Oracle Cloud Infrastructure Architect Exam-(1Z0-932) Certification.