1. Administrator's Guide
  2. Managing Application Security
  3. Launching the Shared Services Console from Financial Management
  4. Assigning User Access to Security Classes

Assigning User Access to Security Classes

After you define users and groups and create security classes, you can specify the type of access that each user and group has to each security class in the application.

You can assign users one of five access types: None, Metadata, Read, Promote, or All. You can use the Pivot feature to toggle between two views for the assign access table. For example, if users and groups are on the rows and security classes are on the columns and you click Pivot, the users and groups move to the columns and security classes move to the rows.

When you grant users access to a security class, you can enable email alerts, which can be used for intercompany reporting, and also to inform users of process unit status changes for entities and scenarios that use the security class. To receive email alerts for process control, a user must have All or Promote access to the security class.

Note:

A user assigned to the Application Administrator role for an application has access to all information in the application.

Table 3-1 User Access Level

Access Level Description

None

No access to elements assigned to the security class.

Metadata

View a specified member in a list but cannot view or modify data for the member.

Read

View data for elements assigned to the security class but cannot promote or reject.

Promote

View data for elements assigned to the security class and can promote or reject.

All

Modify data for elements assigned to the security class and can promote and reject.

To assign user access to security classes:

  1. From the Oracle Hyperion Shared Services Console, expand Application Groups, right-click the application name, and select Assign Access Control.
  2. Select cells for which to assign access rights.

    Tip:

    Use the Shift and Ctrl keys to select multiple cells. Select a column or row by clicking in the column or row header. To change the display of columns and rows, click Pivot.

  3. Right-click and select the access level to assign.

    Note:

    See Table 3-1.

    • None

    • Metadata

    • Read

    • Promote

    • All

  4. Optional: To add an email alert, select cells in the table, right-click and select Enable Email Alert.

    Caution:

    The alerting process uses the email addresses stored in the authentication files, such as MSAD, LDAP, or Native Directory.

    Note:

    To remove email alerts, select the cell and click Disable Email Alert.

  5. Click Save.