Options for Reviewing Predefined Roles

This topic describes some of the ways in which you can access information about predefined roles. This information can help you to identify which users need each role and whether to make any changes before provisioning roles.

The Security Console

On the Security Console, you can:

• Review the role hierarchy of any job, abstract, or duty role.

• Extract the role hierarchy to a spreadsheet.

• Identify the function security privileges and data security policies granted to a role.

• Compare roles to identify differences.

Tip: The role codes of all predefined roles have the prefix ORA_.

Reports

You can run the User and Role Access Audit Report. This XML-format report identifies the function security privileges and data security policies for a specified role, all roles, a specified user, or all users.

The Security Reference Manuals

Two manuals describe the security reference implementation for Oracle HCM Cloud users:

• The Security Reference for Oracle Applications Cloud includes descriptions of all predefined security data that's common to Oracle Fusion Applications.

• The Security Reference for Oracle HCM Cloud includes descriptions of all predefined security data for Oracle HCM Cloud.

Both manuals contain a section for each predefined job and abstract role. For each role, you can review its:

• Duty roles and aggregate privileges

• Role hierarchy

• Function security privileges

• Data security policies

You can access the security reference manuals on docs.oracle.com.