Components of Oracle Cloud Infrastructure (OCI) Identity and Access Management Service

C.

Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) service provides centralized control and management of cloud resources in OCI. It enables administrators to control who can access OCI resources, what type of access they have, and to which specific resources they have access.

The components of OCI IAM service are:

A. User Credentials: OCI IAM enables the creation and management of users and groups that need access to OCI resources. Users can be granted access to OCI resources through the creation of policies. The users can authenticate themselves to OCI using different types of credentials, such as usernames and passwords, API keys, or Auth Tokens.

B. Policies: OCI IAM uses policies to define who has access to which resources in OCI. Policies are rules that determine the actions a user or group can perform on a specific resource. They can be created and managed by administrators to provide fine-grained access control to OCI resources.

C. Network Security Group: OCI IAM allows administrators to create and manage network security groups (NSGs). NSGs are used to control inbound and outbound traffic to OCI resources. Administrators can create rules within NSGs to allow or deny traffic from specific IP addresses or ranges.

D. Federation: Federation is not a component of OCI IAM service. However, OCI IAM provides support for federation through Oracle Identity Federation (OIF), which is a separate service that enables integration with external identity providers. With OIF, administrators can configure SAML-based federation with external identity providers to enable single sign-on (SSO) to OCI resources.

Therefore, the correct answer to this question is D. Federation. It is not a component of the OCI IAM service, but it is supported through OIF.