To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Applications Security
Discussion List
-
Audit of BU Access and Revoked Data Access AssignmentsSummary: We need to confirm if Oracle ERP Cloud provides a way to audit Business Unit (BU) access linked to roles and users, including tracking of revoked or expired Dat… -
Read-Only Access to Customer Details via Custom Role in Oracle FusionWe have a client requirement to provide read-only access to customer details in Oracle Fusion. To fulfill this, we created a custom role and assigned the following privi…
-
How to secure Supplier login page from potential rogue actorsI’m looking for guidance on how to better secure supplier access to the Oracle Fusion Supplier Portal. Current Situation: There are two methods for supplier login: 1. Cr…
-
Need to verify the existence of the audit trails for key configurations and dataset24 Absence of ERP System Audit Trails We have some reuirement related to the Audit where thwy have asked the following information. Observation As part of review of Orac…
-
Impact on Licenses for an Inactive User account with no roles assigned in Fusion ERPSummary: Would there be any impact on licenses against a user account that is in "Inactive" status with "No" roles assigned and unable to log into Fusion ERP Application…
-
Unable to auto assign the data access using auto provisioning rules on basis of assigned rolesHi Everyone, 1.I have created the sample employee in the fusion and created a useraccount for him.I have created the manage data provisioning rules and role mapping on b…
-
Reset all passwords - Is there a way to isolate this further to a super admin?Summary: Today, all admin users can access this. Is there a way, "Reset all passwords" can be restricted to a Super Admin? Content (please ensure you mask any confidenti…
-
Enable Multifactor Authentication(MFA) without SSO enabledSummary: Enable Multifactor Authentication(MFA) without SSO enabled Content (please ensure you mask any confidential information): Hi all, we are not enabling Single Sin…
-
Upsert-Mode= true doesn't work for DataSecurities APISummary: I am trying to fire DataSecurities REST API and the expectation of adding Upsert-Mode=true is that if the Data Security (DAS) already exists for said combinatio… -
Rehired employee still shows as inactive in security consoleHi, We rehired an employee a couple of weeks ago, but they are still showing as inactive in the security console. One post by a fellow community members mention the auto…
-
Historical View of Revoked or Expired Roles in Oracle ERP cloudSummary: We need to confirm if Oracle ERP Cloud allows retrieval of revoked, expired, or removed user roles to support historical access audits. Is there a way to track …
-
HOW TO CONFIGURE SO THAT THE USER'S PASSWORD EXPIRES EVERY CERTAIN NUMBER OF DAYSSummary: Can you configure so that the user's password expires every certain number of days and ask him to change the password? Please support in indicating what would b… -
Is it possible to trigger a notification for a role change in ERP?We have some internal controls that required to be informed when a user is getting the role INT GL Manager and the role INT GL Journals is removed. Is there a way to set…
-
Does the Application Administrator role consume a license in erpDoes the Application Administrator role consume a license in ERP
-
How to check user logon history Application modulewise?Summary: Few questions regarding user logon tracking: How can we check user logon history module-wise in the application? Is there any specific table or process availabl…
-
Does standard Oracle users count in licenses?When running the User Role Membership Report and see that there are a couple of users that we have not created and some of them cannot even be found in the Security cons…
-
Is it possible to activating LBAC only for accesses to HCM via API with SSO?Is it possible to activate LBAC (Location-Based Access Control) only for API accesses to HCM while maintaining the current access management on local resources? If yes, …
-
How to Restrict Access to Setup and Maintenance Tasks by Role in Oracle Fusion HCM and Financials?Summary: Hello, We are implementing Oracle Fusion Applications and have a customer requirement related to securing the Setup and Maintenance area based on user roles. Sp… -
Definition of role codeSummary: Hi All, What is difference among these roles? Why we need same role with different role code? Payroll Common HCM Implementation ORA_PAY_COMMON_HCM_IMPLEMENTION_…
-
Call Oracle Fusion SaaS Rest API without basic authenticationHi, We are looking to substitute basic authentication username/password combination used on OIC or from any external application that call Oracle Fusion SaaS Services wi…
-
What to do with fusion_console_upgrade_admin_role and planning_Console_Upgrade_Service_Admin_GroupHello Oracle Community! Our domain has the below Oracle generated roles: planning_Console_Upgrade_Service_Admin_Group fusion_console_upgrade_admin_role I understand that…
-
Manage Messages for General Ledger grayed out after 25AUsers that had security to Manage Messages for General Ledger, is now grayed out after 25A. What permission or privilege do they need access to for this to be active aga… -
Does WAF for SAAS work in Blocking mode or Alert mode in Oracle Cloud ?Hi We are looking forward to understand the WAF for SAAS capabilities to operate in blocking mode rather than Alert mode. This information is requested are per periodic … -
Is it possible to view login activity of users?Summary: We would like to be able to view how many times a user has logged into the oracle fusion environment and on what date. Is there a role/report within Fusion whic…
-
Enabling External Application Integration with Fusion SaaS Security ConsoleSummary: We are trying to enable external application integration like FDI, EPM FCCS, EPM ARCS with Fusion Security Console. For this, we have enabled profile option “OR…
-
Rotation of Service Provider SAML / SSL CertificateWe would like to know if it's possible to have Oracle rotate the Signing and / or Encryption Certificates that can be found in Security Console. See attached image. We k…
-
25B Change to login screen - first impressionsSummary: The 25B release notes show a change to the user login page. Content (please ensure you mask any confidential information): 25B is introducing a change to the lo… -
WelcomeEmail_SenderAccountAlias/email address via SecurityConsoleSummary: We currently have ALL notifications set in BPM to display our company name so users do not mistake it for SPAM, however we have been advised that this is not wo… -
Is there a process to synchronize Email address and Username in the Security ConsoleSummary: We have multiple scenarios where it is seen due to some reasons, email address and username mismatch causing the users to lose access to Oracle HCM Application.…
-
HCM Advanced Control - How to know if certain Users have displayed certain information about others?Summary: Is it possible to get Notification Alert with HCM Advanced Control when some Users browse / display certain System pages and/or other users info? Content (pleas…Alberto Insana HCM Pre-Sales-Oracle 32 views 5 comments 1 point Most recent by Alberto Romani-Oracle