To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered. (newly added) Please note that it is also important to respond to EACH comment your question receives. Your Yes or No response ensures an accurate status for your question.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Risk Management and Compliance
Connect with experts and get answers to your questions
Discussion List
-
README: How to get what you needLooking for news, events and training? Visit our Resource Center. Want to share ideas for product improvements? Visit our Idea Lab. Want to connect 1-on-1 with experts a… -
Getting error message in OTBI reports. View Display Error Exceeded configured maximum number of aSummary: I get error message when i am running reports using the Advanced Controle Subject Areas Content (please ensure you mask any confidential information): Attached … -
Oracle RMC - why do incidents that have been actioned show as 'Control Inactive'Incidents that are not set to closed status, their status changes to 'Control Inactive' when we inactivate a control. How can we retain the original status?
-
Roles, Data Access & SOD Rules DocumentationHi everyone, I’m currently looking for any documentation related to roles and data access, specifically for the following functional areas: Procure‑to‑Pay (P2P) Finance …
-
Advanced Access Request Analysis job cancelled automaticallySummary: All Advanced Access Request Analysis jobs got cancelling automatically after couple of minits And this job is not triggering automatically when we submit the Ac…
-
Access Condition for Cross-Module SoD Rule (GL FA) – How to Define Common Data Security ContextSummary: Hi Experts, We have a requirement to define an SoD rule in AAC SOD : Enter Journals and Asset Depreciation For intra-module SoD (e.g., Create Invoice and Create…
-
RMC - The job was canceled because the server was shut down. Reschedule the job. (GTG-3660452)Summary: Hi Team, We currently have the job Advanced Access Request Analysis scheduled to run every hour. Out of nowhere, the jobs started to get cancelled and when I cl…
-
SOD historical trend analysisSummary: Hi, Customer is looking for Historical trend analysis. Can we see quarterly trends: did SOD violations increase or decrease? Which risk types grew fastest? Curr…
-
Advanced Access Request - temporary and emergency access are often used interchangeably in practiceHi All, I am working on Oracle Fusion Cloud Risk Management – Advanced Access Requests (AAR) and would like to validate my understanding and clarify one scenario. Tempor…
-
Risk and Security Snapshot report [and related x4 AI Agents] - a question on its usehi all, as above, we've ran a 'first version' and I'm on assessing the first of the x4 Packs now. Overview of Risk and Security Snapshot Report I've quickly found that a…
-
developing AAC controls: how to filter on self-conflicting rolesI'm sure there is a fix for this and you've done it. in Access Control filters, I need the logic as with usual Reporting syntax to state; "exclude results where role nam…
-
Advanced Access Request approved in Oracle Fusion, but incidents in Assigned instead of AcceptedSummary: In our environment, when an Advanced Access Request is raised for a role (with Business Unit) and approved by the approver, the expected behavior is that upon r…
-
SOD remediation automation in Advanced access controlSummary: Hi, We are currently implementing Advanced access control and had a question regarding SOD remediation. We understand that sod violations can be identified usin…
-
AAR Analysis Synchronization Job Not Visible in Scheduling Workarea or Scheduled ProcessesSummary: We are facing an issue with the Advanced Access Request Analysis Synchronization Job in our environment. The job was executed once successfully and then schedul…
-
Within AFC's objects, where can 'Default Expense Account' info be found?Summary: Within AFC's data objects, where can 'Default Expense Account' info associated with a person record be found? Please refer to the image attached. I am looking t…
-
has anyone imported embedded their risk register into ORMChi all as above, has anyone simply imported/recreated their spreadsheet format Risk Register into ORMC in order to fully make use of access certs, risks and controls lin…
-
Access Condition “Within Same Business Unit” Not Working as Expected in SoD AnalysisSummary: Hi Team, We have configured an SoD control “Create Invoice and Create Payments” with an access condition filter as "Within Same Business Unit = Yes" Scenario: T…
-
Partial Role Removal by Data Access Set in Advanced Access Requests (AAR)Summary: Hi, We have a scenario related to manual access removal by the approver: Scenario: User has a single role: Accounts Payable Specialist This role is assigned wit…
-
Risk Management - Importable Controls for Security AuditSummary: Hi Everyone, I'm currently in the process of assembling a spreadsheet for my systems administration team which details available controls for import in Risk Man…
-
Add attribute to model objects in transaction controlsI am enhancing a transaction control in advanced control on Oracle Risk Management. I am using the Expense Report Template model that has the attribute Expense Template …
-
Impact of Prebuilt Model Changes on Existing Controls in Advanced Access controlSummary: Hi, We have a scenario where a control is already created in the system based on a prebuilt model (for example: Create Supplier + Create Invoice). During a quar…
-
Impact of Instance Refresh or Clone on SoD Rules/controls in Risk Management CloudSummary: Hi Experts, We are working on Advanced Access Controls (AAC) module and Advanced Access request. We would like to understand the impact of instance refresh/ clo…
-
ORMC AFC criteria not possible to capture?capture any payments created within 180 days of the External Bank Account been created or updated I cant get it.. the filter options are too restrictive… have you?
-
Access Certification by Data AccessSummary: Hi, We have a requirement to perform user access certification based on data access (eg: Business unit) in Oracle Risk Management Cloud Scenario: The business w…
-
Support for Non-ERP Systems (GTM/WMS) in Access Certification -Oracle Risk ManagementSummary: Hi, We have a requirement to perform user access certification for non-ERP systems (such as Global Trade Management and Warehouse Management systems) using Orac…
-
Advanced access request- temporary/emergency access full user activity logSummary: Hi Experts, We have a requirement related to Temporary (Emergency) Access Requests in Advanced Access Controls (26A). When a user is granted temporary access fo…
-
Oracle Advanced access control incident reportSummary: We need to share an Access control incident status report with the security admin team. could you please provide the latest report that includes: Remediation st…
-
Unable to See Risk Management TabSummary: Hello, I am currently working with the Cybersecurity Incident functionality and trying to access the Risk Management tab. However, the tab is not visible in the…
-
opt in Risk Mgmt pages states ENABLED yet we are, but we arent, are we?hi I need to check with you please, 'Prepare your environments' - - OPT IN RISK ENVIRONMENTS - https://docs.oracle.com/en/cloud/saas/risk-management-and-compliance/26a/f…
-
1list of transaction controls in risk managementSummary: hi i am looking for an updated version ofall the transaction controls in order to support our control environmrnt Content (please ensure you mask any confidenti…
-
How to write condition to include only Validated Invoices in Risk management cloudSummary: In Risk Management Cloud, the Payable Invoice object doesn’t include a Validation Status or Match Status to identify validated invoices. Is there a workaround t…