I have configured instance principal for my dynamic group to be able to send logs to another tenancy using Admit/Endorse policies. I tested the dynamic group by listing buckets in my TenancyB from TenancyA using my OCI CLI which was working fine but Fluentd fails upload logs using the instance principal from TenancyA to TenancyB.
I used user config based approach to send logs to cross tenancy from TenancyA to TenancyB which worked fine. Seems like only Instance Principal approach is where its failing. Can you confirm that its possible or not and if not how can I help you guys make this possible.
I have configured instance principal for my dynamic group to be able to send logs to another tenancy using Admit/Endorse policies. I tested the dynamic group by listing buckets in my TenancyB from TenancyA using my OCI CLI which was working fine but Fluentd fails upload logs using the instance principal from TenancyA to TenancyB. I used user config based approach to send logs to cross tenancy from TenancyA to TenancyB which worked fine. Seems like only Instance Principal approach is where its failing. Can you confirm that its possible or not and if not how can I help you guys make this possible.