Oracle Exam 1Z0-1067-20 Topic 8 Question 6 Discussion

Actual exam question for Oracle's 1Z0-1067-20 exam

Question #: 6
Topic #: 8

You have shared your Oracle Cloud Infrastructure (OCI) tenancy with a group of developers in your organization by creating a compartment called developer. You are an administrator in the tenancy with privileges to modify IAM policies. Developers need privileges to configure Federation to a Single Sign-On (SSO).

m would you give them permissions to complete their task In the most secure manner?

ACreate a new policy with the following statements:
Allow any-user to manage identity-providers in tenancy a-developer
Allow any-user to manage groups in tenancy

BCreate a group called Developers. Set up the following IAM policy:
Allow group Developers to manage identity-providers in compartment a-developer
Allow group Developers to manage groups in compartment

CCreate a group called IdPAdmins. Assign the following IAM policy statement:
Allow group IdPAdmins to manage identity-providers in compartment
Allow group IdPAdmins to manage groups in compartment

DCreate a group called IdPAdmins. Assign the following IAM policy statement:
Allow group IdPAdmins to manage identity-providers in tenancy
Allow group IdPAdmins to manage groups in tenancy

Show Suggested Answer

Suggested Answer: D

Here's limited policy that restricts access to only the resources related to identity providers and group mappings:

Allow group IdPAdmins to manage identity-providers in tenancy

Allow group IdPAdmins to manage groups in tenancy

by Lawrence at May 06, 2022, 05:34 AM

Limited Time Offer

25%

Off

Get Premium 1Z0-1067-20 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!