Remove a user as an administrator in an identity domain in IAM.
Each identity domain requires at least one administrator which is granted the identity domain administrator role directly and not indirectly. In a direct grant, the role is assigned to the user post creation. The user isn't part of any group which grants the role. In an indirect grant, the role is granted through a group mapping to the Administrator Group. Ensure that the identity domain has at least one administrator which is granted the identity domain administrator role directly. If you need to grant a user the identity domain administrator role directly, see Adding Identity Domain Administrators.
-
Open the navigation menu and click Identity & Security. Under Identity, click Domains.
-
Click the name of the identity domain that you want to work
in. You might need to change the compartment to find the domain that you want. On
the domain details page, click Security.
-
Click Administrators.
-
Select the user, click the ,
and then select Remove.
),
and then select Remove.