HCM Data Security Options

These are one-time use and irreversible security configuration options for Oracle Cloud HCM users.

• Generate Data Roles for Person Security Profiles Using Responsibility Type, Scope of Responsibility, and Additional Criteria

  When this option is enabled, the Fusion Data Intelligence data roles are automatically provisioned based on the Oracle Cloud HCM person security profiles with responsibility types and scope of responsibilities. However, no additional criteria specified are considered as part of the data roles. For exclusion criteria, custom criteria, or changes in the assignment type selection, you must create a custom data role in Fusion Data Intelligence. If not, users might have data access in Oracle Fusion Data Intelligence that doesn't match what they have in Oracle Cloud HCM.

  With this option enabled, any updates made to the Responsibility Type and Scope of Responsibility in a user’s AOR-based Person Security Profile in Oracle Cloud HCM automatically updates the Fusion Data Intelligence data roles.

• Unsecure OOTB Context-Based Dimensions

  This option makes Business Unit, Legal Entity, Country, and Department dimensions unsecured when a user has the corresponding prebuilt data roles. This isn't applicable to AOR-based data roles. This option won't be visible in the user interface of a new service instance. So, the four prebuilt context dimensions (BU/Dept/LE/Country) will be unsecured and can't be changed.