Sources of Access Condition Values

Access conditions search for values that vary from one data source to another.

In the Oracle Cloud data source:

• A condition that uses the Access Entitlement Name attribute searches for entitlements listed in the Entitlements page. Your organization may have configured these, or may have imported them along with models that use them.

• A condition that uses the Access Point, HCM Data Role, or User Name attribute searches the Security Console for records of access points, roles, or users. If a condition uses the Access Point attribute, it also searches for user-defined access points.

• The remaining condition attributes include Asset Book, Business Unit, Control Budget, Cost Organization, Data Access Set, Intercompany Organization, Inventory Organization, Ledger, Legal Entity, Manufacturing Plant, and Reference Data Set.

  These attributes correspond to "security contexts" in the Manage Data Access for Users task in Oracle Functional Setup Manager. There, security-context values are combined with user and role values; each combination determines the data access a user has when assigned a particular role. Condition filters that use the corresponding attributes cause a model to find access conflicts only when they involve role assignments with the data access defined in Manage Data Access for Users.

  For example, Manage Data Access for Users may specify that the assignment of a role to some users grants access only to records associated with a specific business unit. A model may include a condition filter that sets the Business Unit attribute equal to that unit. If so, the model finds conflicts involving that role only when it's assigned to those users.

In the EPM-ARCS, EPM-FCCS, OCI, and Imported data sources, you can create conditions that exclude users or access points from analysis. In EPM-ARCS, condition filters can also exclude entitlements.