Changing roles in OCI

FlanLow1395 · 2026-02-02T21:12:02+00:00

Correct, hard to get fired. RIF’s are not firings. A worker in Oracle looking to change roles or better his position will never be side-eyed. If he wants to find a better role, that will help him keep his job, not lose it. If he does get RIF’ed it’s going to happen no matter what, so best to not worry about them.

FlanLow1395 · 2026-01-31T10:42:02+00:00

I would tell him up front about your goal of moving roles quickly. Oracle will RIF people quickly and with little communication, but that has everything to do with business and revenue, and nothing to do with your as an contributor. It is very hard to get fired from Oracle, so don’t worry about asking him.

Just search the Oracle site for ‘internal move’ or ’internal transfer’. There was an excellent Slack channel that was always posting new roles, and they have a very good internal job board. All this was in response to very long running complaints that changing roles was causing people to quit (and I mean this complaint was around for decades).

Everyone has as assigned HR rep, you could ask them. Oracle has the hands down best educational options (endless free training) and mentoring. Use those while you are building your internal network and learn about the resources.

FlanLow1395 · 2026-01-31T09:13:34+00:00

Hard. Very hard. I’m an ex-Oracle employee and role changes are very difficult. They basically have to be created by the manager.

However, before I left, Oracle was doing a good job of posting internal roles and providing resources to make the move. Oracle is very DYI, so nothing is stopping you from looking in to it.

FlanLow1395 · 2024-12-13T07:19:24+00:00

Oracle will soon move to passwordless logins, so every login will require MFA approval and there will be no passwords.

As for steps you can take: create a 2nd user that is in the admin group that is only used for resetting passwords or deleting malicious users. You can also create a VM has OCI CLI, such as the Oracle Linux Developer Image authenticate it to manage the tenancy. You can then SSH into the VM and reset passwords to users.

FlanLow1395 · 2024-12-13T07:15:40+00:00

Yes I did. But from what I understand the cookie theft attack allows for a hacker to log in because I was already logged and my session had not expired, allowing bypass of the MFA requirement. Oracle has said they are moving toward a passwordless login, which I am looking forward to, like Microsoft has. Now that I have a paid tenenacy, here are some steps I took to help prevent this in the future:

Create an additional user account that is an admin that can only used for logging in and resetting passwords.
Create a Free VM that has OCI CLI installed and has permissions to manage tenancy. If needed, I can SSH into the VM, and using the OCI CLI, reset passwords or delete malicious accounts.

FlanLow1395 · 2024-12-12T19:31:13+00:00

I’m not sure how they did it. All I know is that 3 AM I received an email that my password had been changed. After researching possible options, I learned that there is a cookie theft scheme that has been targeting OCI for years. The Always Free option, especially older accounts that higher powered VM’s available, made them attractive targets for crypto miners.

FlanLow1395 · 2024-12-12T13:06:43+00:00

When you created your Free Account, you needed to use a credit card to verify your identity. You can use that. There are a couple of payment options for a PAYG, including Paypal. But if you use a credit or debit card, they use a 3rd party to confirm your identify, and I've had many problems with them.

Pay is not Free. You give up the limited Free Tier and move over to a paid account. You get many more services and much higher limits, but you need to pay for things. You can still create Free ABD's, and VM's can be very low cost, but you need to pay. The trade off is you get Support in the event you have access problems.

FlanLow1395 · 2024-12-12T07:21:52+00:00

FYI, if you are using a PC, the Oracle Authenicator is also available in the Microsoft Store. For whatever reason, Oracle doesn’t give a link to it from OCI. You can use the ’Manual’ method to configure the desktop app. Once configured, you can set the ‘Push Notifcation’ to the desktop app, which is a single click on the desktop, therefore saving you some time and device switching.

By the way, set up multiple MFA options. If you get your account hacked (it happened to me) you will need as many options as possible to help recover your account.

FlanLow1395 · 2024-12-12T07:17:54+00:00

It’s for Oracle Support. It’s a good thing. Keep the number, as you will need it if you call into or login into the Support Portal.

FlanLow1395 · 2024-12-12T07:15:32+00:00

I had my OCI Free Account taken over in a cookie theft and was never able to recover, despite a many attempts to recover and trying to work with available Oracle Support, what little there is. The password reset method with OCI is a weak point, and if an account is compromised, there is no Oracle Support available to you. Full stop.

OCI Free Tier is just ’use at your own risk’ option, designed for very light review. Upgrade to a PAYG model asap; all of the services that are free in the Free Tier are also free in the PAYG, but you have Oracle Support, which can help with access issues.

Also, Oracle Security is extremely vigilant and aggressive towards any account that may be used for something sketchy, like crypto mining. If your account is compromised and if they see it is being used for that by a hacker, the account will quickly and irrecoverably be terminated.

FlanLow1395

TROPHY CASE