Viewing the Role Assignment Report for the Environment
Service Administrators or users with Access Control - Manage application role use the Role Assignment Report to review the access, assigned through predefined roles (in bold) and application-level roles, of all users. This report shows all active users that have been assigned a predefined role. Users that are deactivated are not reflected in this report.
Inherited roles, as well as information on inheritance, are displayed in one row for each user.
In an OCI (Gen 2) environment, if a predefined role is assigned to an IDCS group, the report will show that predefined role assigned indirectly to the user via IDCS group. For example, assume that user John Doe is assigned as member of idcsgroup and this group is assigned to Service Administrator predefined role. In this scenario, the Role Assignment Report displays the following as a part of the role assignment information for John Doe:Note:
It does not list the application roles that are subsumed into predefined roles or the component roles of application roles assigned to the user. If you need a report showing such details, you may generate the classic version of the report using the provisionReport EPM Automate command.
You can export the Role Assignment Report as a CSV file, which can then be
opened using a program such as Microsoft Excel or saved to your computer. The Role
Assignment Report in CSV format uses one row for each role assignment.
To open the Role Assignment Report: