A resource principal consists of a temporary session token and secure credentials that enables the DB System to authenticate itself to other services. Using a resource principal to access services, the token stored with the credentials on MySQL HeatWave is only valid for the resources to which the dynamic group has been granted access. To use a resource principal, you or your tenancy administrator define the policies and a dynamic group that allows access to resources with a resource principal.

For MySQL HeatWave on OCI, see Resource Principals.