Cache with Redis IAM Policies

User Permissions

To create or manage a Redis cluster, users require permissions to access to create and manage the required Networking resources in addition to permissions to create and manage Cache with Redis resources. The following policy example grants these permissions to the RedisAdmins group:

Allow group RedisAdmins to manage redis-family in compartment <YOUR_COMPARTMENT>
Allow group RedisAdmins to manage virtual-network-family in compartment <YOUR_COMPARTMENT>

You can configure these permissions with more granularity, see Sample Policies.

Resource Types

Cache with Redis offers both aggregate and individual resource-types for writing policies.

Aggregate Resource Type

redis-family

Individual Resource Types

redis-clusters
redis-work-requests

You can use the aggregate resource type to write fewer policies. A policy that uses redis-family is equivalent to writing one with separate statements for each of the individual resource types.

Sample Policies

The following policy allows the group RedisAdmins to create and manage all OCI with Cache with Redis resources.

Allow group RedisAdmins to manage redis-family in compartment <YOUR_COMPARTMENT>

To restrict manage access to a single resource type, use one of the following policies:

Allow group RedisAdmins to manage redis-clusters in compartment <YOUR_COMPARTMENT>

Allow group RedisAdmins to manage redis-work-requests in compartment <YOUR_COMPARTMENT>

To allow users to use Redis clusters, but restrict other access, use the following policy:

Allow group RedisAdmins to use redis-clusters   in compartment <YOUR_COMPARTMENT>

If you're new to policies, see Getting Started with Policies and Common Policies.

Permissions Required for API Operations

The following table lists the API operations in alphabetical order.