Wednesday, February 7, 2024

Oracle Integration (OIC3) Provisioning and User Access

In this blog post, I will delve into the intricacies of Oracle Integration (OIC) provisioning and user access, shedding light on best practices and essential considerations to ensure a smooth and secure implementation.


Provision OIC Instance

1-      Login to OCI with admin role and from main menu slect “Developer Services” à Integration




2-      Choose the Compartment and Region



 3-      Press “Create Instance” and enter the name of the instance and select the relevent options:

ü  Select Oracle Integration 3 as it the latest version

ü  Select Standard or Entrprise (you can start with Standard and switch later to Entrprise at any time. If you want to use Process Autoation, you should choose Entrprise).

This a quick comparison of capabilities of both Standard and Entrprise


ü  Shape Development or Production (Both are the same but Development will get any updates two weeks before Production so that you can test changes in DV before it applied to Production)

ü  License either new license or you can bring your on-prenise license to cloud

ü  Message packs. Min value 1 and max 12. Each message pack give you 5000 messages in an hour. (You can start with 1 message pack).

ü  Press “Create”


4-      It will take few minutes to get your instance provisioned and in active status



5-      Click on the instance and you can open the instance details


6-      OCI instance came with File Server (with 500 GB free with the instance), Visual Builder and Process Automation (For Entrprise License). By default these features is disabled but you can enable these features if you want.

7-      You can open Integration console and start working with integration by presson on “Service Console” button or by coping Service console URL.

8-      You can Start, Stop or Delete the instance from More actions menu



9-      You can move the instance compartment to another compartment by pressing on Move


10-   You can change License Edition or message packs number by pressing on Edit button

User Access


In Oracle Cloud, access is managed with policies. Policies control access for users in a domain group. However, in OIC you can give access to the user using Application Roles only without policy as will shown below. So, define policy for OIC access is not manadatory.

 1-      From OCI goto Identity à Policies


 2-      Press “Create Policy” and entered the following to manage OIC instance

Policy syntax to allow to manage integration instance in compartment

Allow group <group-name> to manage integration-instance in compartment <compartment-name>

“manage” mean give group ability to create, delete, edit and move OIC instances

You can use “read” as shown below, to give user only read-only access to see the OIC instances in a compartment and see the details of the instance


You can optional create another policy for OIC observability as shown



Optionally you can create policy in the integration service level (not group level) for announcment related to OIC instance (New updates, new release, maintenance…). The notification announcement will contain announcment from OIC


The Announcement can be available in OCI notification







Or announcement can be seen from Oracle Integration Console



 3-      Application Roles. Once OIC instance is provisioning, in order to give developers or other users access to that particular instance to the instance console, you need to define and assign application roles.

Select Identity & Secuirity àDomains à your domain à Oracle Cloud Services



4-      Select OIC instance


5-      From Resource select Application Roles



6-      Expand the required role and assign user or group. Best to assign Group as shown











No comments:

Post a Comment