Oracle Self-Service E-Billing v6.2: Reporting on User Audit Data

Oracle Self-Service E-Billing audits some enrollment user actions performed in the Billing and Payment application.

Oracle Self-Service E-Billing audits the following actions that occur when creating users:

Oracle Self-Service E-Billing audits the following actions that occur when enrolling users:

Oracle Self-Service E-Billing audits the following actions that occur when updating user profiles:

Oracle Self-Service E-Billing audits the following actions that occur when deleting users:

Oracle Self-Service E-Billing audits the following actions that occur when logging in and out:

You can report on the audit data for each user role, including the user who performed the action, the date and time, IP address, and various attributes. For details about payment audit data, see About Payment Auditing. For information about database auditing, see Auditing Database Administration Activity.

You can create customized reports on the audited user enrollment data. Oracle Self-Service E-Billing stores audit data for user enrollment activities in the EDX_UMF_USER_AUDIT table. Table 50 describes the EDX_UMF_USER_AUDIT table:

Table 50. EDX_UMF_USER_AUDIT Table
Column Name	Description
ID	A unique ID assigned to the each occurrence of a user enrollment event, generated automatically by sequence.
USER_ID	The ID of the user who performed the action, either on his or her own account or on another user's account.
ACTION	The ID indicating the type of user action. (Action type IDs are defined in the EDX_UMF_USER_ACTION_TYPE table.)
ACTION_DATE	The date of the user action.
TARGET_USER_ID	The ID of the target user. If the user performed the action on his or her own account (the target user is the same as the USER_ID), then the value in this column is null.
USER_ROLE	The role of the user who performed the action.
NOTES	The reason for locking an account: Incorrect Login, Reset Password, Security Question, or Account Expired. (User account reactivation only.)
ATTRIBUTES	The changed attribute.
IP_ADDRESS	The IP address of the user who accessed the Billing and Payment application.

Table 52 shows the ID associated with each type of user action. These associations are stored in the EDX_UMF_USER_ACTION_TYPE Table:

Table 52. ID of User Action Types Stored in the EDX_UMF_USER_ACTION_TYPE Table
ID	User Action Type
1	Reactivate
2	Impersonate-login
3	Impersonate-logout
4	Login
5	Logout
6	Update user profile
7	Update notifications
9	Reset password
10	Create user
13	Enroll user
16	Delete user
17	Login failure

Table 53 shows the user action type recorded in the EDX_UMF_USER_AUDIT table for each user enrollment activity in Oracle Self-Service E-Billing.

Table 53. User Action Types Used for Each User Enrollment Activity
User Action Type ID and Description	Associated User Enrollment Activities	Valid Attributes
1 - Reactivate	A CSR administrator reactivates a locked-out account.	Password
2-Impersonate-login	A CSR user (administrator or CSR) impersonates a business or consumer user logging in.	Null
3-Impersonate- logout	A CSR user (administrator or CSR) impersonates a business or consumer user logging out.	Null
4-Login	A business, consumer, or CSR user logs in.	Null
5-Logout	A business, consumer, or CSR user logs in.	Null
6 - Update user profile	A business, consumer, or CSR user updates his or her own user access information.	One of the following: One or more of the following: First name, last name, and email address Password Security question and answer
6 - Update user profile	A business user (administrator or manager) updates another business user's access information.	One of the following: One or more of the following: First name, last name, and email address Role
6 - Update user profile	A CSR administrator updates another CSR user's access information.	One of the following: One or more of the following: First name, last name, and email address Role
6 - Update user profile	A CSR user (administrator or CSR) updates a business or consumer user's access information by impersonation.	One of the following: One or more of the following: First name, last name, and email address Role
6 - Update user profile	A migrated business, consumer, or CSR user creates a new HIPPA-compliant password.	Null
6 - Update user profile	A business, consumer, or CSR user updates his or her own expired password.	Password
7 - Update notifications	A business or consumer user updates his or her own notification settings. A CSR user (administrator or CSR) updates a business or consumer user's notifications by impersonation.	Notifications
9 - Reset password	A business, consumer, or CSR user resets his or her forgotten password.	Password
10 - Create user	A Business Edition administrator creates another business user's account. A Consumer Edition user creates his or her own account. The default CSR administrator creates another CSR administrator account. A CSR administrator creates another CSR user's account. A CSR administrator creates a Business Edition administrator's account. A CSR administrator or user creates a business user's account while impersonating a Business Edition administrator.	Null
13 - Enroll user	A business or consumer user enrolls. A CSR user (administrator or CSR) enrolls. A migrated business, consumer, or CSR user creates a new HIPPA-compliant password.	Null
	A business, consumer, or CSR user enrolls to complete the reactivation process after clicking the URL in an email notification.	Security Question and Answer
16 - Delete user	A Business Edition administrator user deletes another business user's account. A CSR user (administrator or CSR) deletes a business or consumer user's account by impersonation. A CSR administrator deletes another CSR user's account.	Null
17 - Login failure	A business, consumer, or CSR user login fails.	Null

Implementation Guide for Oracle Self-Service E-Billing		Copyright © 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices.