How to Identify Required Privileges for Each ERP Function – Any Reliable and Generic Methods?
Hello community,
I'm working with Oracle Cloud ERP and trying to manage user roles and privileges more efficiently.
As you know, what users can do on the screen depends on the roles and privileges they are assigned. If we want to apply the principle of least privilege, we often need to create custom roles composed of just the necessary privileges. However, in my experience, it's quite difficult to identify the exact privileges required for each ERP function.
So far, I haven't found a comprehensive Oracle document that maps application functionality directly to required privileges. Usually, I have to dig into old MOS notes or even raise an SR to get clarity.