Oracle Communities

Oracle Analytics and AI

Child Item

Report which audits role delegation and revoked roles

Description

Hi Community,

We are trying to audit the delegation of roles, and roles that have been revoked from users. We trying to see who completed the action and when this took place.

Report Layout example

Delegator | Employee | Role | Action (Grant/Revoked) | Date of Action

Does anyone know if this is possible and how we can achieve this?

Thanks for your assistance in advance

Use Case and Business Need

Business need the ability to audit roles which have been delegated and revoked from users as per auditing requirements to ensure users have not been granted unathourised access to roles.

Original Idea Number: d8d67b762d

Find more posts tagged with

Submitted

Security

BI Publisher

OTBI

Status: Submitted

Comments

Karissa-85136

This is an enhancement we've been needing as well - there is an ER/Bug in metalink (ID below) related to this that was opened a couple years ago, but the status is "Suggestion Rejected"

Bug 27187704 : WFRULEDICTIONARY AND WFUSERVACATION

AprilMaurer

Given the heightened focus on security in the industry, it is surprising that this is not already a higher priority. Audit records should be present for Role Assignment and Areas of Responsibility. Currently there is no way to tell if a Role Assignment or Area of Responsibility has been deleted. This is a clear security gap for the client and could potentially cause a security breach.