Skip Headers
Oracle® Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager
11g Release 1 (11.1.1)

Part Number E14568-08
Go to Documentation Home
Home
Go to Book List
Book List
Go to Table of Contents
Contents
Go to Index
Index
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Previous
Go to next page
Next
PDF · Mobi · ePub

A Access Roles

The Oracle Adaptive Access Manager users can access functionality based on the roles they are assigned. Oracle Adaptive Access Manager ships the following default administrator roles: support personnel, investigators, security administrators, and system administrators. You can also create new users and assign roles appropriately.

This section summarizes the main user groups, their roles, functionality and level of access in OAAM.

A.1 Support Representative (Group #1)

Support Representatives (Group #1) have very limited access to the OAAM Administration Console.

Table A-1 Support Representatives

Items Support Representatives (CSR) have access to these features Notes
 

Users with the Support Representative role have very limited access to the OAAM Administration Console.

 

Cases

CSRs have access to search, open and create CSR type cases. There are no outward facing hyperlinks in any of the pages CSRs have access to. They have access to a limited list of actions. They have no access to bulk edit functions on search cases page.

Search cases

  • They can search for CSR cases; They cannot search for agent and escalated cases

  • They can search for open and closed cases but they cannot reopen closed cases; They can only add notes.

  • They can search for expired cases and view details but they cannot perform any actions

   

New cases

  • They can open only CSR cases

   

View case details

  • They can view expired case details

  • They cannot view escalated cases or agent cases

  • They can view closed case details and add notes

  • They can view transactions in sessions tab

   

Edit case

  • They can change case status and severity

  • They cannot add public notes to Escalated Cases

  • They cannot bulk edit cases

  • They can escalate cases

  • They cannot perform a temporary allow for a user

  • They cannot OTP bypass users

  • They cannot extend expiration

  • All customer and KBA resets

  • KBA phone challenge

  • They can perform Customer Resets - a. Image and Phrase.

  • Challenge Questions

    Reset Questions

    Reset Question Set

    Unlock Customer

    Ask Question

  • Expired status cases - Search Access; No access to open

  • OTP Actions

    Reset Email

    Reset Phone

    Reset All

    Unlock OTP


A.2 Support Manager (Group #2)

Groups #2 members will have the access privileges of Group #1 plus some other limited functionality.

Table A-2 Support Manager

Items Support Managers have access to these features Notes
 

Support Managers have the access privileges of the Support Representative and some other limited functionality.

 

Cases

No create agent type cases. Hide actions, log and linked/related tabs in agent cases

Search Cases

  • They can search for CSR, Agent and Escalated cases

  • They can search for open and closed cases.

  • They can search for expired cases.

   

New Case

  • Only CSR cases

   

View Case Details

  • They can view Escalated Case details (including logs and sessions); but cannot perform any actions

  • They can view closed case details (They can only add notes or change status)

  • They can view Transactions in sessions tab

  • They can view expired case details (They can only add notes and extend expiration date)

   

Edit cases

  • They cannot perform any actions on Escalated Cases

  • They can

    Re-open closed cases

    Add notes in CSR cases

    Change status and severity

    Bulk edit CSR cases

    Escalate cases

    Grant temporary allow to users

    OTP bypass users

    Extend expiration

    Perform all customer and KBA resets

    Perform KBA phone challenge

    Change Status

    Change Severity

  • Temporary Allow

    Single login

    2 hours

    Set end date

  • Customer Resets

    Image

    Phrase

    Image and phrase

    Customer (all)

  • Challenge Questions

    Unlock Customer

    Reset Questions

    Reset Question Set

    Next Question

    Ask Question

  • Closed status cases - Search and open Access

  • Expired status cases - Search and Open Access

  • Escalate a CSR case - Full Access

  • Link Sessions tab in escalated status

  • OTP Actions

  • Can search for and view session details; but no access to detail pages or policy explorer


A.3 Fraud Investigator

Fraud Investigators have wide access to the OAAM Administration Console.

Table A-3 Fraud Investigator

Items Group has access to these features Notes
 

Fraud Investigators have wide access to the OAAM Administration Console.

 
   

Also access to add /remove/delete group memberships from details pages

Navigation Tree

Full Access (ready only except environment)

  • No access to bulk editing of cases.

  • Full access for CSR, Agents and Escalated cases

Cases

Full access.

 

Search page

Search Agent Cases

 

Scheduler

No access

 

Environment

No access

 

A.4 Fraud Investigation Manager

Fraud Investigation Managers have wide access to the OAAM Administration Console.

Table A-4 Fraud Investigation Manager

Items Group has access to these features Notes
 

Fraud Investigation Managers have wide access to the OAAM Administration Console.

 
   

Also Access to add /remove/delete group memberships from other pages

Navigation tree

Full Access (ready only except environment)

  • Full access to bulk editing of cases

  • Full access to CSR, Agent and Escalated cases

Cases

Full access.

 

Scheduler

No access

 

Environment

No access

 

Home Page

Search Agent Cases

 

A.5 Security Administrator

Security Administrators have wide access to the OAAM Administration Console.

Table A-5 Security Administrator

Items Group has access to these features Notes
 

Security Administrators have wide access to the OAAM Administration Console.

 
   

Except Environment node and security dashboard (should be hidden by default)

Navigation Tree

Full Access

Not closable

Home Page

Search Policies

 

Cases

View only access

 

Scheduler

Access for Offline Security Administrators

 

Environment

No access

 

A.6 System Administrator

Limited access to the OAAM Administration Console for system administration duties

Table A-6 System Administrator

Items Group has access to these features Notes
 

Limited access to the OAAM Administration Console for system administration duties

 
   
  • No access to cases

  • Full access to Environment

  • Read-only access to everything else

Navigation Tree

Partial access

 

Scheduler

Access to Online and Offline System Administrators

 

Environment

Full access

 

Home Page

Search Properties

 

A.7 Auditor

Auditor has no access to the OAAM Administration Console. They will do their audit work in BIP.

Table A-7 Auditor

Items Group has access to these features Notes
 

Auditor has no access to the OAAM Administration Console. They will do their audit work in BIP and the common audit framework.