To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Applications Security
Discussion List
-
Passwords are not expiring per the password policywe have recently discovered that the password policy is not being enforced or is not working. We have checked several accounts including user accounts and passwords that… -
JPS (Java Platform Security) Keys UsageHello Team, In one of our security ask we are been queried with a question that are we in use of Java Platform Security keys in any of our services we are enrolled of, c…
-
SSO Options with OSC and other sitesHello, We currently have a SSO set-up from OSC to CPQ and we were looking at additional options for other sites. We were wondering what options we have and what OSC can …
-
Show custom message to specific usersSummary: Is it possible to show a message (anyhow - popup, plain text, warning message…) to specific users at login? Content (please ensure you mask any confidential inf… -
Prevent user frontend loginFor our Oracle HCM Cloud environment, we have configured OAuth security for connecting with API's, and we followed this guide: Different ways to consume Fusion SaaS API …
-
Oracle fusion session inactivity timeoutHello, I've been asked if it's possible to increase the session inactivity timeout. As per the doc it doesn't look like this is possible. Is this still the case does any…
-
Disable "Add User" while creating or updating roles in Security ConsoleWe need to create a custom role for: 1. Edit Existing roles 2. Create Additional Roles. 3. This role should not be allowed to Add Users while creating new role or updati…
-
Issue with Synchronizing Users from Azure Entra ID to OCI IAMI am working with a client's Active Directory and using Azure Entra ID. However, when I import the users to OCI IAM, it brings in the entire pool of users. I only need t… -
Does Oracle HCM have functionality to provision roles to external applications?Summary: Does Oracle HCM have planned functionality to provision roles to external applications? A colleague had recalled a mention of this functionality in a roadmap fo…
-
'Last Login Dates' are not recorded for specific users'Last Login Dates' are not recorded for a specific user despite this data being available for all other users. A particular user account is frequently deactivated due to…
-
How to restrict access for users by calling their specific roles via page composer?Summary: Is it possible to restrict users from accessing certain functionalities by calling out their specific roles? Example. User1 has role 1 2 3 User2 has role 1 2 Is…
-
Unknown User Names in PU_USERS TableSummary: Seeing plenty of Unknown User Names in PU_USERS Table. Few samples are give below. 1)Please let know whether this pose any threat 2) Are these Oracle generated?…
-
Automatic Revocation of Roles assigned to Users based on End DateSummary: In old days of EBS, the Responsibilities assigned to Users had a Start Date and End Date. The Responsibility assigned to the user would be functional only betwe…
-
If SSO is enabled, should the Oracle User Name be same as SSO email ID??Summary: If SSO is enabled, should the Oracle User Name be same as SSO email ID?? for eg: In SSO , email ID of employee is abd@company.com. And the user name in security…
-
Password ManagementHello, I searched the entire security memo and couldn't find the answer to my question: https://docs.oracle.com/en/cloud/saas/applications-common/25a/facsa/how-can-i-dis… -
How to skip Fusion SSO login page?Hello Employees in our organization access various Fusion HCM pages via deep links configured in our company's internal portal. For example, one link takes them to perso… -
grant in SYSTEM scope failed due to JPS-04201 oracle HCM OPSS audit rest APIfor an audit integration, we need to transmit audit REST API details to a third party monitoring system. using OPSS as product for fscmRestApi/fndAuditRESTService/auditt…
-
Agreed upon procedure - Fusion ApplicationAs per our internal audit team we want to enable "Agreed upon procedure (AUP)" on our Fusion instance. As per auditors this is enabled by Oracle which lets us track all …
-
Are there a sign in and failed sign in attempt reports for Oracle Fusion financials.Summary: And is this data available in a table or via an api that we can export to analyze. Our auditors and IT security are requesting Content (please ensure you mask a…
-
Oracle Health breachSummary: FYI and any additional infomration would be great. Our old SR was closed for the other even with the denial of the incident. So the other topic is closed, and t… -
Can user reset the password once expired on user login screen by confirming last passwordI understand there is a forgot password link on login screen and user can reset the password by notification link. I just wanted to confirm if there are any ways to rese… -
How can I tell if the user was created using SSO vs manuallySummary: I ran a user report in Oracle OTBI within fusion, and it isn't clear what user accounts are managed through SSO and which ones are manual Oracle accounts whose … -
Best practices for Service Account ManagementSummary: Best practices for Service Account Access Reset to avoid any impact on the business as usual Content (please ensure you mask any confidential information): Hi A… -
Need the table details for Security Console Notifications for the below seeded notifications/custom.In security console user will receive below notifications. Based on the events like user created, password expired etc. Where this data is stored in the database table. …
-
Is it possible enable MFA in Oracle Cloud HCM application?Summary: Hi, Please let us know the MFA can be enabled for Oracle Cloud HCM application. We have enabled MFA using IDP but wanted to know if Oracle has provided any solu…
-
Name of the table that stores the 'Location Based Access' infoSummary: Hi, I'm trying to figure out the table name that stores the 'Location Based Access' info. Navigation: FA → Tools → Security Console → Administration → Location … -
Is it possible to retrieve IP addresses and user activity logs for a specific dateHello, Is it possible to find out the following information in Oracle HCM Fusion: The IP addresses used by logged-in users for a specific date? Can a top-level log file … -
Fusion environments upgrade to OCI IAMWhen you say SSO will be moved to Oracle IAM from Fusion security console, Will the current configuration setup will be available once it's moved to Oracle IAM or we nee…
-
Set up IP Restrictions for FDI instancesHello All, Is there any documentation out there on how to restrict network access to Oracle Financial Data Intelligence URL's through IP restricting? I cant seem to find…
-
6 million data records allegedly stolen from the company's Oracle Cloud federated SSO login server?Latest news on Massive Oracle Cloud Breach which was discovered on 21-March-2025 on following link:- https://www.cybersecuritydive.com/news/researchers-oracle-cloud-brea…