Oracle Cloud Infrastructure Documentation

Who Has Access to What in Oracle Access Governance: Comprehensive Access Profile Visibility across Enterprises

Get comprehensive visibility on all the components, access information, and resources within an enterprise framework using Oracle Access Governance Who has Access to WhatEnterprise-wide Browser. With this, you can track and monitor who has access to different systems, data, and applications, at what permission level, and for what it is being used, to make informed decisions and detect potential security issues for effective governance.

With Enterprise-wide Browser, you can get details into access profiles of identities across enterprise. As a manager, you can go to My Directs' Access to view access profiles of your team, enabling you to oversee the access privileges of team members. As an Oracle Access Governance user, you can view your own accesses from the My Stuff > My Access page. For more information on what access components you can view, see Enterprise-wide Access Profile Reference

  • Applicable Roles for Enterprise-wide Browser: Enterprise-wide Access Administrator or Administrator
  • Applicable Roles for My Directs' Access and My Access: User
You can view access information, accounts, permissions, and identities from multiple views in Oracle Access Governance, depending on the application role and operational needs.
  • Use Enterprise-wide Browser (EWB) for enterprise-wide access visibility on all the components, access information, and resources within an enterprise framework. Typically used by users with the AG_Enterprise_Wide_Access_Admin application role. See Explore Access Profile in an Enterprise
  • Use Manage Identities for identity administration and identity-level operational tasks. Typically used by users with the AG_ServiceDesk_Admin application role. See Manage Account Lifecycle with Oracle Access Governance Service Desk Administrator Support.
  • Use My Access and My Directs’ Access to review your own access or access assigned to your direct reports. Typically used by managers and Oracle Access Governance users. See View Access Details and Manage Account.
  • Use Data Browser for reviewing reconciled accounts and permissions and performing account management operations at the orchestrated system-level, such as matching accounts with identities, retrying provisioning for failed operations, and revoking permissions. Typically used by users with the AG_AppOwner_Admin or AG_AppOwner_Admin_Restricted as the resource owner. See Data Browser: View Accounts and Granted Permissions for Managed Systems.