Oracle Cloud Infrastructure 2021 Architect Associate — Question 6

Which Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM) policy is invalid?

Answer options

• A. Allow any-user to inspect users in tenancy
• B. Allow dynamic-group FrontEnd to manage instance-family in compartment Project-A
• C. Allow all-groups to inspect users in tenancy
• D. Allow group A-Admins to manage all-resources in compartment Project-A

Correct answer: A

Explanation

The policy in option A is invalid because 'any-user' is not a recognized entity in OCI IAM policies; permissions cannot be granted to all users. The other options are valid as they correctly specify access for dynamic groups, all groups, and specific groups, which are legitimate entities within OCI IAM.