What security policy should be assigned to just allow the 'import' functionality in an identity domain? We currently have a separate Identity Domain configured in OCI as part of the Oracle's recommended configuration to protect External Users when they access Oracle Fusion Bill Management. This mechanism works fine.
We would like to empower our Customer Service People to allow the ability to select Reset Password and on the Integrated Application “Oracle Fusion Applications Release 13” the ability to select Import and Import to force a sync when working with a customer as the shortest sync cycle available is 1 hour.
So what should the policy look like for the import portion. I currently have this to allow the user password resets, though not crazy about this also including delete. Still have no idea how to add in the import portion into the policy.
My current policy statement - thoughts?
Allow group 'OCI Identity Domain'/'Customer Care Assist' to manage users in tenancy
Thanks in advance.