View Access to Resources
Users can check what access they have for themselves or for their direct reports.
My Directs' Access
Managers can view details of the applications, cloud resources, permissions, and roles assigned to their direct reports.
Note:
This feature is not available if you have integrated only OCI IAM, as your target system, with Oracle Access Governance.My Access
Users can view details of the application, cloud resources, permissions, and roles assigned to themselves.
- Accounts: User account name or user ID
- Permission: Application permission to perform operations, such as Admin, Viewer, and so on.
- Grant type: Method of granting access to application. For example, through Access Policy, Direct Provision, Request, or through Role assignment.
- Date granted: Date on which the application access was granted
- Granted until: End date, if any, for application access.
- Resource name: Name of that resource as defined in the cloud system.
- Resource type: Individual or family resource type, such as VCNs, subnets, instances, volumes, and so on.
- Compartment: Compartment name on which that resource is located and access is granted.
- Policy name: Name of the policy as defined in the cloud system.
- Privilege: Level of access to perform operations on that resource. For example, Inspect, Read, Write, or Manage
- Role name: Logical role name granted for applications along with relevant permissions. For example, Users role granted for JIRA, Confluence, and Figma applications, with Read permissions.
- Grant type: Method of granting role, such as Direct or through Request.
- Date granted: Date on which the role was granted.
- Granted until: End date, if any, for that role.
Enterprise-wide Access
Users with an Administrator role can get a 360-degree view of all the resources and assigned permissions for those resources from the Oracle Access Governance Console.
From the Enterprise-wide Access page, you can view a list of the entire organization's resources and resource types across various systems connected with Oracle Access Governance. You can also fetch which identities are currently assigned to that resource, at what permission level, and how those permissions are assigned or granted (manually or through some policy).
To view a list of available resources:
- In the Oracle Access Governance Console, from the
navigation menu, select Who Has Access to What , and then Enterprise-wide Access.
The Enterprise-wide Access page is displayed. You can view the count of resources and resource types available in Oracle Access Governance for your organization.
Search and Sort Resources
Use the Search field to locate the required resources by resource name. You can manage a large set of resources by applying sorting techniques. Use the Sort by drop-down to sort resources by Resource Name or Resource Type and/or use the Sort Direction drop-down to arrange resources alphabetically either in ascending (A-Z) or descending (Z-A) order.
View Resource Details
- Resource Name
- Resource Type
- Count of Identities who have access to that resource
Click the resource name to view identity details.
At the top, the resource details page displays the count of identities who can access that resource. Based on the available data ingested into Oracle Access Governance, you can view a complete list of identities and their details, such as identity name, email address, organization, job code, location, manager details, permission level, and how that permission is assigned to the resource.
The pie charts show you the break down of identities having access to the resource based on organization, job-code, or location. Use the Sort by drop-down to sort identities by First Name or Last Name, and/or use the Sort Direction drop-down to arrange identities alphabetically either in ascending (A-Z) or descending (Z-A) order.
Click the CSV icon to export the data in the CSV format.