1. User Security Administration Guide
  2. Provisioning Financial Management
  3. Financial Management Provisioning Process
  4. Provisioning Security Classes

Provisioning Security Classes

Security classes determine the access that users have to Oracle Hyperion Financial Management applications. You assign security classes to application elements such as accounts and entities. A user's or group's ability to access application elements depends on the security classes to which the user or group is granted access.

Access to journals, data forms, and data grids is controlled by the security class assigned to each artifact. Users and groups that are provisioned with the security class assigned to an artifact gain access to the artifact in the Financial Management application.

To grant access to security classes:

  1. Access Oracle Hyperion Shared Services Console as Oracle Hyperion Shared Services Administrator or as the Application Administrator of the Financial Management application for which you want to define access control. See Accessing Shared Services.
  2. In the View Pane, perform these steps:
    1. Expand Application Groups.
    2. Expand the application group that contains your Financial Management application.
    3. Right-click the Financial Management application for which security roles access is to be set, and then select Assign Access Control.

      Users and groups that are provisioned with roles from the selected application, along with their current security class assignments, are listed on Applications. Security classes can be assigned to these users and groups only.

  3. Optional: Add security classes for classic applications.
    1. From Actions, select Add Security Classes.
    2. In Class Name, enter a name for the new security class.
    3. Click OK.
  4. On Application, set the access right each user or group has to each security class. By default, no access right is granted to nely provisioned application users and groups. Consult online help for assistance.

    • To change all the security class access assignment of one user or group, right-click the user or group name and then select an access level.

    • To set the same all the security class access assignment levels for many users and group, while holding down the control key, right-click the user or group names and then select an access level.

    • To change the access level for one security class, right-click the cell that lists the access level and then select a level.

    Available access levels are explained in Table 11-1.

    Table 11-1 User Access Levels on Artifacts

    Access Level Permitted Tasks
    None No access to elements assigned to the security class.
    Metadata User can view a specified member in a list but cannot view or modify data for the member.
    Read User can view data for elements assigned to the security class but cannot promote or reject.
    Promote User can view data for elements assigned to the security class and promote or reject.
    All User can modify data for elements assigned to the security class and promote and reject.
  5. From Actions, select Save.
  6. Optional: Select Actions and then Security Reports to generate a Security Report to verify that the security classes are properly assigned to provisioned users and groups.