To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Applications Security
Discussion List
-
supporting documents for Oracle Apps ERP/EPM/OCI certificate managementCertificates are managed and governed throughout their lifecycle to ensure trust between parties in a secure communication session. Certificate Management is the governa… -
How to authenticate the SOAP Request using SSOSummary: I am working with Oracle Fusion Applications and using their SOAP services to execute queries and fetch data. I want to authenticate the SOAP requests using my …
-
How to fetch User Account Privileged Changed EventsSummary: I want to fetch the details related to user account privilege changed events like list of privileges user have, who changed the privileges and what privileges a…
-
Use ECDSA signing algorithm instead of RSA for signing certificatesSummary: Can we use ECDSA signing algorithm instead of RSA for the signing certificates Content (please ensure you mask any confidential information): We have updated th… -
how to restrict Hiring manager and Recruiter lov while creating a requisitionSummary: we have a requirement to while creating a requisition Hiring Manager and Recruiter values should be excluded of one business unit. we have 3 business units in 3…
-
Malware/Virus Scan for documents uploaded in UCM from External SourceSummary: Is there any Oracle Solution that deals with the documents scanning for uploaded documents from external system to Oracle UCM Cloud for virus/malware scanning. …
-
Does exist a way to get a report for user log sessions?Summary: Does exist a way to get a report for user log sessions? Content (please ensure you mask any confidential information): We need to monitor access to the system. … -
CSSP Log API Integration for Oracle HCMSummary: Oracle HCM SaaS Log API for Cyber Security Service Provider (CSSP) Content (please ensure you mask any confidential information): As the summary mentions, has a…
-
Issues with user accounts being inactivated for employees with active HCM recordsI dont know if LDAP is the culprit but we have active employees who have user accounts that infrequently set to 'inactive'. These user accounts have roles assigned to th…
-
Does WAF for SAAS work in Blocking mode or Alert mode in Oracle Cloud ?Hi We are looking forward to understand the WAF for SAAS capabilities to operate in blocking mode rather than Alert mode. This information is requested are per periodic … -
Audit & Compliance EventsSummary: What is the way to enable audit logs in oracle fusion, trying to fetch these fields from audit log Audit Log Enabled, Audit Log disabled, log deletion attempted…
-
SSO enabled environment - how to handle pending worker user profileContent Hi Team, Our client has an SSO enabled environment with LBAC and they are soon starting to use ORC. In this case we would like our pending workers to access the … -
Unknown User Names in PU_USERS TableSummary: Seeing plenty of Unknown User Names in PU_USERS Table. Few samples are give below. 1)Please let know whether this pose any threat 2) Are these Oracle generated?…
-
Show custom message to specific usersSummary: Is it possible to show a message (anyhow - popup, plain text, warning message…) to specific users at login? Content (please ensure you mask any confidential inf…
-
Facing security issue in redwood pages; Person security profile with AOR and using Department HierarHello Team, We have requirement to build the AOR based on Department tree. Our department tree consists of parent and child departments but when we are providing child d…
-
Role Deprovision - Best Practice - Delete Role or Uncheck Autoprovision Box in Rule on Role?Summary: In Manage Role Provisioning Rules, and a role is to be deprovisioned (removed) from users, there is functionality to delete the role from the rule or to uncheck…
-
How can we whitelist a lower environmentWe are currently utilizing Oracle Cloud ERP, with Single Sign-On (SSO) enabled for the Production (PRD) environment, and the option to log in using a username and passwo… -
Rotation of Service Provider SAML / SSL CertificateWe would like to know if it's possible to have Oracle rotate the Signing and / or Encryption Certificates that can be found in Security Console. See attached image. We k…
-
How to add new fusion roles in application composer, i dont see an option to create newSummary: Hi Team I want to add new role here in application composer but i do not see an option here to add new role or to use any roles i have created in fusion. How to…
-
How do I perform a mass password reset for all user accountsSummary: Security experts - Hopefully I have an interesting question for you. We have enabled both SSO and the normal user id and password on our login page for Oracle. …
-
Clarification regarding Token based authentication implementation in OICHi, Currently , for connection between our PaaS (OIC) and SaaS (fusion cloud) is having basic authentication. We are planning to implement OAuth token based authenticati…
-
Oracle cloud account keep getting lockedOracle cloud ERP SaaS Account keep getting locked, we are not able to find out which process is using incorrect password. Is there way to get audit trail for failed logi…
-
What is the way to get details of User Account disabled eventsSummary: What is the way to fetch details of User Account disabled events like why account is disabled, at what time account is disabled, User ID of whose accounts are d…
-
Hiring Agencies not able to access Oracle HCM cloud SaaS Application while SSO implementedHiring Agencies access to Oracle HCM cloud SaaS Application while SSO implemented. Hiring agency users are not able to login post SSO implemented and chooser page disabl…
-
Fusion environments upgrade to OCI IAMWhen you say SSO will be moved to Oracle IAM from Fusion security console, Will the current configuration setup will be available once it's moved to Oracle IAM or we nee…
-
We are unable to login the support portal as it always asking to verify the identification.Summary: We are unable to login the support portal as it always asking to verify the identification. Can you please help us to login successfully? Content (please ensure…
-
What is the way to fetch details of Administrative ActivitiesSummary: What is the way to fetch details of Administrative Activities like User & Role Management, Database & Object Management, Data Management, Security & Access Cont…
-
JPS (Java Platform Security) Keys UsageHello Team, In one of our security ask we are been queried with a question that are we in use of Java Platform Security keys in any of our services we are enrolled of, c…
-
How to fetch User account deleted eventsSummary: How to fetch the information of user account deleted events like who, why and at what time deleted the user account. Let me know if there is any standard report…
-
How to fetch User Login Failure EventsSummary: I want to fetch User Login Failure Events details such as timestamp, IP Address, Failure reason like why it is failed because of incorrect password or account i…