Documentation Home
MySQL HeatWave on AWS
Download this Manual
PDF (US Ltr) - 1.1Mb
PDF (A4) - 1.1Mb


MySQL HeatWave on AWS  /  User and Group Management  /  Groups and Permissions

12.1 Groups and Permissions

MySQL HeatWave on AWS has three predefined groups. The groups are created in the OCI Default identity domain. The predefined groups and associated permissions are described in the following tables.

Table 12.1 OracleMySQLHeatwaveDBUsers Group

Group Description Resources and Permissions
OracleMySQLHeatwaveDBUsers: Members of this group can use DB Systems and HeatWave Clusters resources.

DB Systems

  • View Supported Shapes

  • View DB Systems

  • View DB System Details

  • Start DB Systems

  • Restart DB Systems

  • Update DB Systems

  • Stop DB Systems

  • Run Queries

  • View Query Status

  • Stop Queries

DB System Backups

  • Create DB System Backups

HeatWave Clusters

  • View HeatWave Clusters

  • View HeatWave Cluster Details

  • Create HeatWave Clusters

  • Start HeatWaveClusters

  • Stop HeatWaveClusters


Table 12.2 OracleMySQLHeatwaveDBAdmin Group

Group Description Resources and Permissions
OracleMySQLHeatwaveDBAdmin: Members of this group can manage all aspects of DB Systems, DB System Backups, and HeatWave Clusters resources. In addition to OracleMySQLHeatwaveDBUsers group permissions, this group has these permissions:

DB Systems

  • Create DB Systems

  • Delete DB Systems

DB System Backups

  • View DB System Backups

  • View DB System Backup Details

  • Delete DB System Backups

HeatWave Clusters

  • Delete HeatWave Clusters


Table 12.3 OracleMySQLHeatwaveServiceAccountAdmin Group

Group Description Resources and Permissions
OracleMySQLHeatwaveServiceAccountAdmin: Members of this group can manage all aspects of DB Systems, DB System Backups, and HeatWave Clusters resources.

This group has the same permissions as the OracleMySQLHeatwaveDBAdmin group.

Note

The OCI user account that registered for the MySQL HeatWave on AWS service is added to the OracleMySQLHeatwaveServiceAccountAdmin group when the service is provisioned.