OCI Identity Cloud Service (IDCS) - Target.DynamicGroup.Name in a Policy is not Passed to the Identity Data Plane (IDDP) when Evaluated.
(Doc ID 3005642.1)
Last updated on FEBRUARY 28, 2024
Applies to:
Identity Cloud Service (IDCS) - Version N/A to N/AInformation in this document applies to any platform.
Symptoms
A clause referencing the target.dynamicgroup.name in a Policy fails.
The following statements will fail to allow a user in the group to edit or manage the Dynamic Group:
if the clause is removed, users can edit any dynamic group. The need is to restrict access to specific dynamic groups.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |