Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Oracle Fusion Security Context

gregorycarlson
New Contributor
New Contributor

‎03/13/2024 05:56 AM

I've found previous posts on this topic, but I've not seen an answer.

For some Job Roles in Oracle Fusion, we also require a Security Context to control data access. So, for example, you might have the "Buyer" role but only for a specific Business Unit security context.

The Fusion integration in Saviynt only seems to support the "Job Role" entitlement type (e.g. Buyer). Has anybody extended this to add Security Context as a dependent entitlement for the roles which need it?

Apparently there is an API for Security Context - so it seems feasible. REST API for Oracle Fusion Cloud Risk Management - Get security context list

In my prior experience with SAP Security, the use of "enabler" roles/entitlements were used to assign the data access - examples of Security Context:

https://docs.oracle.com/en/cloud/saas/applications-common/23c/facsa/data-access.html#s20052512

Has anyone used this method? I'm working with our Oracle implementation team, but they are manually creating/updating users until we take over provisioning through Saviynt EIC.

Labels:
0 Kudos
4 REPLIES 4

sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎03/15/2024 04:08 AM

Hello @gregorycarlson,

Please refer the below document,
https://docs.saviyntcloud.com/bundle/AAG-Guide/page/Content/AAG_for_Oracle_Enterprise_Resource_Plann...

Thanks.

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

ganimkt
New Contributor II
New Contributor II
In response to sudeshjaiswal

‎03/27/2024 12:21 AM

Hi @sudeshjaiswal 

I am working on mapping the security context and security context values to the Roles as a child entitlements.

Request you to provide me ImportAccountEntJson for the same. 

I was getting 403 error, when I tried to access the below API's but the client is telling he has already assigned the IT Security Manager Role to the service account. any suggestion which role needs to be assigned to access these API's.

/fscmRestApi/resources/11.13.18.05/advancedAccessUsers/{userGUID}

/fscmRestApi/resources/11.13.18.05/advancedAccessRequests/action/getSecurityContextLOV

/fscmRestApi/resources/11.13.18.05/advancedAccessRequests/action/getSecurityValue 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to ganimkt

‎03/27/2024 09:08 PM

403 is API permission Issue


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

gregorycarlson
New Contributor
New Contributor
In response to sudeshjaiswal

‎03/28/2024 06:31 AM

We have Oracle as a connected system (not disconnected as the link provided) - My goal would be to not have hands-on-keyboard manually updating/pressing buttons to update. I've seen, in previous ERP implementations, using an "Enabler" role to provide the data access. Has anyone used a solution like this?

0 Kudos
Copyright © 2024 Khoros, LLC