Steampipe unbundled →
Steampipe Hub 
Hub
Plugins
turbot/oci
Overview
160Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install oci

Table: oci_identity_dynamic_group - Query OCI Identity Dynamic Groups using SQL

OCI Identity Dynamic Groups are a collection of compute instances within an OCI compartment that match rules defined in a statement. This allows you to manage instances in a dynamic manner without the need to manage each instance individually. It is a key component in OCI's Identity and Access Management service.

Table Usage Guide

The oci_identity_dynamic_group table provides insights into dynamic groups within OCI Identity and Access Management (IAM). As a cloud administrator, explore group-specific details through this table, including group rules, associated compartment ID, and associated metadata. Utilize it to manage and monitor dynamic groups, such as those with specific rules, the relationships between groups, and the verification of group policies.

Examples

Basic info

Explore the basic information of dynamic groups in your Oracle Cloud Infrastructure. This can help in understanding their current lifecycle state and when they were created, which is useful for management and auditing purposes.

select
  name,
  id,
  description,
  lifecycle_state,
  time_created
from
  oci_identity_dynamic_group;
select
  name,
  id,
  description,
  lifecycle_state,
  time_created
from
  oci_identity_dynamic_group;

List inactive dynamic groups

Analyze the settings to understand which dynamic groups in your OCI identity are not currently active. This can help manage resources and identify potential security risks.

select
  name,
  id,
  lifecycle_state
from
  oci_identity_dynamic_group
where
  lifecycle_state <> 'ACTIVE';
select
  name,
  id,
  lifecycle_state
from
  oci_identity_dynamic_group
where
  lifecycle_state <> 'ACTIVE';

Schema for oci_identity_dynamic_group

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form, e.g. connection_name.
defined_tagsjsonbDefined tags for resource. Defined tags are set up in your tenancy by an administrator. Only users granted permission to work with the defined tags can apply them to resources.
descriptiontextThe description you assign to the group.
freeform_tagsjsonbFree-form tags for resource. This tags can be applied by any user with permissions on the resource.
idtext=The OCID of the group.
inactive_statusbigintThe detailed status of INACTIVE lifecycleState.
lifecycle_statetext=The group's current state.
matching_ruletextA rule string that defines which instance certificates will be matched.
nametext=The name you assign to the group during creation.
tagsjsonbA map of tags for the resource.
tenant_idtextThe OCID of the Tenant in which the resource is located.
tenant_nametextThe name of the Tenant in which the resource is located.
time_createdtimestamp with time zoneDate and time the group was created, in the format defined by RFC3339.
titletextTitle of the resource.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- oci

You can pass the configuration to the command with the --config argument:

steampipe_export_oci --config '<your_config>' oci_identity_dynamic_group