Managing Britive Profiles for OCI

When you have onboarded the required OCI application, you can create user profiles in Britive that correspond to the groups in Oracle Cloud Infrastructure. Next, you can check out or check in profiles from the OCI application using Britive.

When you create a Britive profile in the onboarded application, then within the profile, you can only add the groups from OCI as permissions. This is because, in Oracle Cloud Infrastructure, the policies are defined for groups. When you check out a profile, the groups are sent to OCI as SAML data, the OCI reads the SAML data (for groups), and depending on the groups sent, it gives you permissions of that group.

For example, when a user checks out a profile in a group named "Network Admins" in Britive, as per the OCI policy defined for this group, the user gets the permissions assigned to this group.