To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Applications Security
Discussion List
-
Read-Only Access to Customer Details via Custom Role in Oracle FusionWe have a client requirement to provide read-only access to customer details in Oracle Fusion. To fulfill this, we created a custom role and assigned the following privi… -
SQL to find ALL privileges assigned to a UserHi Team, I am trying to find ALL privileges which are assigned to user. Can somebody share the exact SQL. If I pass a user name, it should provide all the privileges (Fu…
-
Unable to See Report output option/Hyperlink in Scheduled newprocess after Removing BI Admin RoleHi Team, We have recently made below security changes to BI Custom folder. 1. Removed the BI Administrator Role access to the users 2. Customized the permissions to BI A…
-
Will Run Diagnostics Tests expose sensitive accessSummary: While exploring Run Diagnostics Test page I was curious to know if it will expose to sensitive data like payroll details etc. Because few of the runs that i saw…
-
MFA Implementation Strategy-Fusion Identity Architecture ChangesHi Team, We are in the process of implementing MFA for Oracle Fusion Cloud Applications, following the guidance outlined in the referenced documentation. https://www.ate… -
Which role /Privileges is required for accessing sandboxSummary: Which role /Privileges is required for accessing sandbox Content (please ensure you mask any confidential information): Version (include the version you are usi…
-
Does OCI allow push notification to MS or Google AuthenticatorWe have a requirement to use MFA for OCI console Access or any integrated application access. Client wants to use MS authenticator with push number validation, is it pos…
-
Could you please help us understand the functionality and navigation of below privilegeCould anyone please help us understand the functionality and navigation of below privileges and provide us the specific tab information for outbound loads. Manage Outbou…
-
Seeking Guidance on Java Code Signing for EBS 12.2.10Summary: Seeking Guidance on Java Code Signing for EBS 12.2.10 on OCI Cloud Content (please ensure you mask any confidential information): I’m working on code signing fo…
-
Restricting access to Lookups based on RolesHi Team, We have a requirement to restrict the access to common and standard lookups to the users based upon the modules. For example- Finance users should be able to ac… -
If SSO is enabled, should the Oracle User Name be same as SSO email ID??Summary: If SSO is enabled, should the Oracle User Name be same as SSO email ID?? for eg: In SSO , email ID of employee is abd@company.com. And the user name in security…
-
Need details around the user with Username "urn_opc_resource_fusion_<instance_name>_erp_APPID"Summary: We have observed that a new bank branch was created on May 30, 2025, by the user account "urn_opc_resource_fusion__erp_APPID." However, when we searched for thi… -
Any tips or gotchas with using Location-Based Access?Summary: We implemented Fusion (HCM, ERP, SCM, EPM) in 2021 but are now considering turning on the Location-Based Access to protect employee data from hackers. Content (…
-
HCM Support for DigiCert CASummary: Does Oracle HCM support DigiCert as a certificate authority for certificates used by IDPs for single sign-on? Content (please ensure you mask any confidential i…
-
Sample HDL to update payroll relationship numberSummary: We have this employee who has payroll relationship number with -1, and we would like to update his relationship number by removing the -1 so third party payslip…
-
Issue with Synchronizing Users from Azure Entra ID to OCI IAMI am working with a client's Active Directory and using Azure Entra ID. However, when I import the users to OCI IAM, it brings in the entire pool of users. I only need t… -
EL expression by RoleSummary: The business is requesting to hide a specific field in the performance document when employees, managers, or admins view their own document. However, when a man… -
view only privilege for common and standard lookup using RESTWe use below API's inside our Visual builder studio and we are using oracle cloud account as security for FSCM connection. API- 1: fscmRestApi/resources/11.13.18.05/comm…
-
EL Expression based on Legal EntitySummary EL Expression based on Legal EntityContent Is it possible to have an EL expression based on Employee's Legal Entity ? We are using the same custom role for all t… -
Unable to copy top and inherited roleSummary:I am trying to copy top and inherited role, but the process is running into error. We have tried to give a different name and code as well. Any idea how to resol…
-
How to Enable Just in Time User Provisioning in Oracle Fusion SSO with Azure AD ?Summary: We have recently enabled SSO with chooser on Prod environment. And would like to enable JIT (Just-In-Time) provisioning allows Oracle Fusion to automatically cr…
-
Report SSO users and Non-SSO UsersSummary Report SSO users and Non-SSO Users with Sign-on Chooser pageContent We have enabled Sign-on chooser page. This helped us manage the contractors and system accoun…
-
User Details in IDCSHi, I am trying to retrieve the details of a user, specifically the list of applications that the user is provisioned to in IDCS. Could you please let me know if theres …
-
Remove OTP from Oracle HCM Cloud Fusion Login PageOur instance is selected for security reinforcement things, one of them is Oracle HCM Cloud login page. The problem is not all of our users are required OTP because not …
-
Not able to view workers under person management with HR Analyst roleWe are not able to view any workers under person management with the HR Analyst role. The role is a data role inheriting the seeded HR Analyst role and has a view all ac…
-
Restricting Access to Only Add Contingent WorkerDear Team, We are currently facing an issue on the New Person page. Our business team requires that only the "Add Contingent Worker" option be visible on this page. We a…
-
Any tips or gotchas with turning on Encryption for bank account dataSummary: We implemented Fusion (HCM, ERP, SCM, EPM) in 2021 and are now considering turning on the Encryption for bank account data to protect employee data from hackers…
-
How to bring E-signature as a attribute in RTF template using BI reportSummary: Hi, How to bring E-Signature from journey screen into RTF template through BI query, It is showing that its a BLOB in query .. How to bring this into our datamo…
-
Error : The record didn't load because of an exception. Rerun the import.Summary: I am trying to load Account, Opportunities and SRs in the application via EDLC. And most of the records are getting rejected with an error " The record didn't l…
-
Purge older data more than 90 days in fnd_session_user_activityAfter activating FND_TRACK_USER_ACTIVITY profile option, is it possible to delete data older than 90 days in fnd_session_user_activity table