To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Applications Security
Discussion List
-
Report showing when a user has had a role removed from their user accountContent When business users have roles assigned to their account for a period of time and then these roles are removed, we lose track of what they had access to from an … -
OCI IAM - PreUpgrade step 2 error in EntraSummary we've exported the XML and manually entered the Provider Id, URLs, and certificates in Entra and get the attached error in Entra. Please advise how to troublesho… -
Person record association with SCIM APIHello, I understand SCIM integration is used for CRUD operations for Users. But I want to understand if I create a user using SCIM, is there a way to associate the perso…
-
SCIM Integration - Okta to Oracle Fusion ERPSummary: We are trying to create users in Oracle Fusion ERP from Okta. Users will be onboarded in Okta and then provisioned into Fusion ERP using SCIM. Could someone ple… -
Will current IAM settings be overwritten as part of Fusion Identity Upgrade?Summary: Content (please ensure you mask any confidential information): Version (include the version you are using, if applicable): Code Snippet (add any code snippets t…
-
Bulk update employer detailsSummary: We would like to Bulk update employer Legal Entity for a set of employees. As per Oracle notes, we would need to navigate to My Clent Groups → Show More —> Empl…
-
Authenticating Oracle Fusion REST APIs Using Microsoft Entra ID TokensSummary: Guidance on Authenticating Oracle Fusion REST APIs Using Microsoft Entra ID Tokens Approach: https://www.ateam-oracle.com/post/aad-token-fusion-apis Content (pl…
-
How to Renew Azure AD (Microsoft) SSO Certificate for Oracle Fusion ApplicationsSummary: I received an automated notification upon logging into the Oracle Fusion Cloud application (see attached screenshot) warning that our identity provider signing …
-
How to Implement single sign on EPMSummary: Hi All We are implementing oracle EPM under the domain of Oracle Identity provider and We would like to enable SSO for the Same , Do I need to enable the SSO on…
-
Failed to run "Send Pending LDAP Requests" as a scheduled processesSummary Failed to run "Send Pending LDAP Requests" as a scheduled processesContent Hello, I failed to run "Send Pending LDAP Requests" as a scheduled processes, the syst… -
EPM report assign permission not visible for power usersSummary: Hi Everyone – I came across the below note from Oracle stating that the new “Reports - Manage” role in EPM allows users to see the “Assign Permissions” option o…
-
Fusion Applications Identity Upgrade – When to Deactivate Old IDCS SP in OktaSummary: We are currently preparing for the upcoming Fusion Applications Identity Upgrade. Our environment is configured with federated SSO using Okta as the Identity Pr…
-
Enable logs for detailed user activity trackingSummary: Enable and configure detailed auditing and session logging on the instance to support security monitoring and incident investigations. We require comprehensive …
-
Suspended flag is Yes and roles were not removed for that user. Will this consume any license?Summary: Hello Experts, Few users are marked as Yes in Per_Users Table and roles are not removed for such users. Will such users consume any license cost? Content (pleas…
-
Oracle Fusion Cloud impact of mass update username and emailsSummary: We are moving to a new MS tenant, this means our email address and our usernames in Oracle Fusion cloud will be changed. We are thinking of using HDL tool for m…
-
Deprovisioning user synced through Just In Time provisioningSummary: We need to remove/deprovision users from IDCS groups when they are removed from our AD groups. Content (please ensure you mask any confidential information): We…
-
Post-HDL processes that sync the Security Console email and Work Email validate email domain?Summary: When converting Worker data into a client's non-production instance, we added XX to the end of all email addresses to invalidate them. We then noticed that the …
-
Reset password link has expired it shows use forgot password?Summary Reset password link has expired it shows use forgot password?Content Hi Team, Reset password link has expired it shows use forgot password? Issue:- New hired per… -
Renew SAML certificate in IDCSI am following cloud customer connect discussion to renew SAML certificate. https://community.oracle.com/customerconnect/discussion/819222/ I am not able to locate Manag…
-
Do we need to apply security patch CVE-2026-21992Summary: We received a security alert for CVE-2026-21992. Do we need to apply this patch as a Fusion HCM customer? Content (please ensure you mask any confidential infor…
-
How to create View Access custom Role for "Manage Financial Project Settings" in ProjectsHi Team, Our requirement is to create a custom role "XX Project Inquiry" with access to the Project Financial Management and Costs tabs. Within Project Financial Managem…
-
What privilege is need to be able to export and import in CSV for setupHi What privilege is need to be able to export and import in CSV for setup ?-Refer to screenshot below: Content (please ensure you mask any confidential information): Ve…
-
Role Hierarchy - "You can remove only roles inherited by the current role" error when try to deleteContent Hi, We are using 19D (11.13.19.10.0). There is a seeded role called "Cash Manager" (Code: ORA_CE_CASH_MANAGER_JOB) When I look at the Role, and go to edit it, wh…
-
OCI IAM Upgrade - Pre-upgrade tasks (and IdP) clarificationHi Team, Regarding to the https://docs.oracle.com/en-us/iaas/Content/fusion-applications/identity-migration-overview.htm#identity-migration-actions-before documentation,…
-
Oracle EBS to Cloud GL COA MapperSummary: Customer plans to retain Oracle E‑Business Suite (EBS) for all subledger modules and implement Oracle ERP Cloud – General Ledger only with a redesigned Chart of…
-
Extracting row level data security from Oracle cloud erpSummary: We are currently extracting data from Oracle Cloud ERP into our data warehouse using BICC, and we would also like to capture user-level data security informatio…
-
No Access in Smart View even though we have assigned data access and is showing in instanceWe have implemented Segment Level Security in our project and assigned the GL roles with the necessary Data Access. However, when accessing the data in Smart View, we en…
-
How to GET Location Base Access Control (LBAC) and IP Whitelisting details via RestApiSummary: How to GET Location Base Access Control (LBAC) and IP Whitelisting details via RestApi for Oracle Fusion SaaS. Content (please ensure you mask any confidential …
-
Manage data access for users is there HDL not REST api?Hello , We would like to use the upload option of the manage data access users but without using the botton of spreadsheet- "Authorize Data Access" We would like to use … -
IDCS successful login report Filter not workingSummary: I need to extract 3 months of log in report data and when I change the filter to 3 months, it only gives me 30 days of login information. Does it work for anyon…