Tuesday, July 5, 2016

How to Create a Custom Role with Restricted Privileges in Fusion Applications.

1.  In OIM Console, create custom job role CUSTOM_ROLE
Create Role in OIM

2.  In APM, create a custom duty role (CUSTOM_DUTY) and assign only the Manage Billing Activities privilege to this custom duty role. This privilege provides access to Receivables : Bill link in Navigator.
Create Duty Role in APM
Assign privilege to duty role
 

3.  Map the custom duty role (CUSTOM_DUTY)  to custom job role created in step #1 (CUSTOM_ROLE)
map duty role to external role

4.  Assign Customer Maintenance Duty, Customer Creation Duty duty roles to the custom job roles.  This duty role provide access to the Manage Customer task and Create Customer task respectively.
map additional role

Now, you create a custom role: CUSTOM_ROLE which only have access to manage customer task and create customer task under Receivable, Bill.
For fusion application like HCM, CRM, it does not utilize the data role generated from data role template any more. Although you will still see seeded data role template in APM (in next step), HCM, CRM does not support any further functions through those data role generated by data role template. so for HCM,CRM, you can end at this step.

5. Create a new custom data role template, Make sure Template Group is ‘BU’. This will allow the template to be automatically executed when a new BU is created
    Create Data Role Template
    In the External Roles tab, add the custom job role
    Assign external role
    Go to the Dimension tab. Set the dimension SQL, Click Preview button.
    Dimension Tab
    Go to the Naming tab. Define the data role naming rules similar to the original FinancialsArSetId role template.
    Naming Tab
    In Policies tab, add the ‘FUN_ALL_BUSINESS_UNITS_V’ object to the Database Resource table.
   screen shot
    In Data Set tab, select Attribute Mapping = ‘BU_ID’
    Data Set Tab
    Go to Actions tab. Scroll and select following data privileges and check it.
        Manage Receivables Activities
        View Receivables Activities
    Action Tab
    Click the Save button to save the new template. Then click the Generate Roles button to generate the data roles and grants for existing BUs.

6.  Assign the data role generated above to a test user

7. Log in to Fusion Application by the test user, click Navigator
   You can see Receivable : Bill

8. Click Bill,  you can see the Manage Customer link and Create Customer Link on the left
Posted by at

2 comments:

  1. UnknownAugust 15, 2017 at 11:46 PM

    I am truly inspired with this blog! Clear clarification of issues is given and it is interested in everybody. A debt of gratitude is in order for sharing this post. your blog style is also very impressive and beautiful. I am very impressed. Great work!
    oracle fusion hcm training

    ReplyDelete
  2. stsushApril 29, 2018 at 11:46 PM

    Nice blog about punchout XML, it's being great to read this.
    Punchout CXML Catlog

    ReplyDelete

Subscribe to: Post Comments (Atom)