3 EPM Cloud Checklist for Cloud Account Administrators (New Orders on OCI Gen 2)

While activating an Oracle Enterprise Performance Management Cloud subscription, the Account Owner designated you as the Account Administrator as well as the Service Administrator for EPM Cloud services. Subsequently, you should have received an email from oraclecloudadmin_ww@oracle.com titled Action Required: Please Activate Your Services. This email contains the information you need to access the My Services as the Cloud Account Administrator to complete the next stage of the process.

Use this checklist to take you through the steps involved in activating and provisioning your subscription.

Create EPM Cloud Instance

When you create an instance, EPM Cloud automatically creates two environments.

Instructions for Creating an EPM Cloud Instance (4 minutes)

Create Identity Domain Administrators and Service Administrators

You can delegate setup and configuration activities to other Identity Domain Administrators and Service Administrators.

Instructions for Creating Identity Domain Administrators and Service Administrators (6 minutes)

Set up Single Sign-On (Optional)

Identity Domain Administrators set up SSO from the Oracle Cloud Identity Console.

• Read about Federating with SAML 2.0 Identity Providers (10 minutes)
• Instructions for Federating an Identity Provider (10 minutes)
• Instructions for Configuring SSO with OCI EPM Cloud Using Azure AD as the Identity Provider (20 minutes)
• Instructions for Configuring Single Sign-On Between EPM Cloud and Oracle Fusion Cloud (20 minutes)
• Instructions for Configuring Single Sign-On Between EPM Cloud and NetSuite (20 minutes)

Create Users and Assign Predefined EPM Cloud Roles

Identity Domain Administrators have many options (My Services, Oracle Cloud Identity Console, EPM Automate, and REST APIs) to create users and assign EPM Cloud predefined roles.

• Read about user and role management in EPM Cloud:
  • About User and Role Management (4 minutes)
  • Understanding Predefined Roles (4 minutes)
    • Planning and Planning Modules predefined roles (2 minutes)
    • Financial Consolidation and Close predefined roles (2 minutes)
    • Tax Reporting predefined roles (2 minutes)
    • Profitability and Cost Management predefined roles (2 minutes)
    • Account Reconciliation predefined roles (2 minutes)
    • Oracle Enterprise Data Management Cloud predefined roles (1 minutes
    • Narrative Reporting predefined roles (1 minutes)
• Instructions to use My Services User Management screen to create and assign predefined roles to one user at a time: Create Users and Assign Roles (4 minutes)
• Instructions to use Identity Cloud Services Console to create users one at a time: Create User Accounts (3 minutes)
• Instructions to use Identity Cloud Services Console or My Services User Management screen to create a batch of users by importing from a Comma Separated Value file: Import User Accounts (5 minutes)
• Instructions to use EPM Automate to create batches of users and assign them roles.
  • Add a batch of users: addUsers command (5 minutes)
  • Assign a predefined role to a batch of users:assignRole command (5 minutes)
• Instructions to use REST APIs to create batches of users and assign them roles.
  • Add a batch of users: Add Users to an Identity Domain (5 minutes)
  • Assign a predefined role to a batch of users:Assign Users to a Predefined Role or Application Role command (5 minutes)

Set Notification Preferences (Optional)

Complete this step only if Oracle notifications for service incidents should be in a language other than English:

Read about Setting Notification Preferences (2 minutes)

Manage and Monitor EPM Cloud Account

Account Administrators use the Reports Dashboard of Identity Cloud Services Console to manage and monitor your Oracle Cloud account. Available reports are:

• System log that captures activity such as logins and user management actions.
• Notification delivery status for events such as new users and password changes.
• Login attempts to Identity Cloud Services.
• Users who did not log into Identity Cloud Services for a period.
• Application Access for users who log in to an environment
• Predefined roles granted to or revoked from users.

• Understand the Type of Reports
• Run Reports

Set up Network Restricted Access (Optional)

Use EPM Automate to set up an allowlist for your EPM Cloud instance.

Read about setting up IP allowlist using EPM Automate ipAllowList command (5 minutes).

Notify Users

A Service Administrator creates an EPM Cloud business process in an environment. When it is ready for use, broadcast the URL of the environment to users.

Set up OAuth2 for REST API and EPM Automate Access (Optional)

EPM Automate and REST APIs can use the OAuth 2.0 authentication protocol to access OCI (GEN 2) environments to execute commands, especially for automating the running of commands.

Read about setting up OAuth 2.0 Authentication with OAuth 2 - Only for OCI (Gen 2) Environments (5 minutes) in REST API for Oracle Enterprise Performance Management Cloud

Set up Automated Retrieval of Reports (Optional)

You can create and schedule scripts that use EPM Automate commands to automate a wide variety of administrative activities, including the downloading of the Activity Report and other audit reports.

Information sources in Working with EPM Automate for Oracle Enterprise Performance Management Cloud :

• Automating Activity Report Downloads to a Local Computer (15 minutes)
• Using the groupAssignmentAuditReport Command (5 minutes)
• Using the userAuditReport Command (5 minutes)
• Creating Audit Reports of Users Assigned to Roles (15 minutes)
• Creating Role Assignment and Revocation Audit Report (15 minutes)

Set up Automatic Daily Backup Archival (Optional)

You can create and schedule scripts that use EPM Automate commands to automatically backup the daily maintenance snapshot of the environment to a local computer or to Oracle Object Storage.

Information sources in Working with EPM Automate for Oracle Enterprise Performance Management Cloud :

• Back up Application Snapshot to a Computer (15 minutes)
• Copying a Snapshot to or from Oracle Object Storage (15 minutes)

Change the Maintenance Time (Optional)

Each EPM Cloud environment requires up to one hour every day to take a backup of the environment, install any updates, and create the Activity Report.

Read about Daily Maintenance:

• Daily Maintenance Operations (2 minutes)
• Setting the Maintenance Start Time for an Environment (1 minute)