Secure Access to Value Sets
This topic shows how to grant data security policies to the predefined Custom Data Security Policies for Application Identities duty role. These data security policies secure access to value sets.
Follow these steps:
-
Sign in with the IT Security Manager role or privileges.
-
Select .
-
On the Roles tab of the Security Console, search for the Custom Data Security Policies for Application Identities (ORA_HRC_APPLICATION_IDENTITY_CUSTOM_DSPS) duty role.
-
Select the role in the search results.
-
From the Actions menu for the role, select Edit Role.
Tip: You can add data security policies to a predefined role without first having to create a copy of the role. This type of modification survives upgrade. -
On the Basic Information page, click the Data Security Policies train stop.
-
On the Data Security Policies page, click Create Data Security Policy.
-
In the Create Data Security Policy dialog box:
-
Enter a policy name, for example, Access Secured Value Sets VISION_SECURED_VALUE_SET.
-
In the Database Resource field, search for and select the name that you defined for your value set.
Tip: You created this value on the Create Value Set page after selecting Security enabled for the value set. -
Enter a start date. Use a value on or before today's date so that you can test user access to the value set.
-
Set Data Set to All values.
-
Set Actions to Read.
-
Click OK.
-
-
Repeat from step 7 for additional value sets.
-
On the Data Security Policies page, click the Summary and Impact Report train stop.
-
Review the summary of your changes.
-
Click Save and Close.
-
Click OK to close the confirmation dialog box.
Processes running with any of the APPIDs that inherit Custom Data Security Policies for Application Identities now have secured access to relevant value sets.