Managing CA Bundles

To use Oracle Cloud Infrastructure, you must be granted security access in a policy (IAM)  by an administrator. This access is required whether you're using the Console or the REST API with an SDK, CLI, or other tool. If you get a message that you don't have permission or are unauthorized, verify with your administrator what type of access you have and which compartment  you should work in.

The following policy gives permission to the example group CABundleAdmins to do anything with the cabundles resource-type and cabundle-associations resource-type in the specified example compartments. The policy also gives permissions to the example group to create associations by allowing them to see the certificate-authority-associations and certificate-associations in the specified example compartment.

allow group CABundleAdmins to manage cabundles in compartment ABC
Allow group CABundleAdmins to manage cabundle-associations in compartment ABC
Allow group CABundleAdmins to inspect certificate-authority-associations in compartment ABC
Allow group CABundleAdmins to inspect certificate-associations in compartment ABC

For more information about permissions or if you need to write more or less restrictive policies, see Details for the Certificates Service. If you're new to policies, see Getting Started with Policies and Common Policies.