What can I use the Security Console for?

Use the Security Console work area to perform most security-management tasks.

Security Console Tasks

You can do these tasks on the Security Console:

• Review role hierarchies and role analytics.
• Create and manage custom job, abstract, and duty roles.
• Review the roles assigned to users.
  Note: You use the Manage Users work area, not the Security Console, to create users and to provision users with roles.
• Compare roles.
• Simulate the Navigator for a user or role.
• Manage the default format of user names and the enterprise password policy.
• Manage notifications for user-lifecycle events, such as password expiration.
• Manage PGP and X.509 certificates for data encryption and decryption.
  Note: Oracle Sales and Fusion Service don't use certificate functionality.
• Set up federation and sync user and role information between Oracle Applications Security and Microsoft Active Directory, if appropriate.

Security Console Access

You must have the IT Security Manager job role to use the Security Console. You open the Security Console by clicking the Security Console link within the Tools menu in the Navigator. These tasks, performed in the Setup and Maintenance work area, also open the Security Console:

• Manage Job Roles
• Manage Duties
• Manage Data Security Policies

You may also be interested in reviewing the article, How to Audit Security Customization (Role Creation, Role Modification, Role Membership, Entitlement/ Privilege Changes) in Fusion Application (Doc ID 2175861.1), on My Oracle Support.