1 Security Management
This topic explains how to define and maintain the security of the banking system in terms of user access and roles.
Controlled access to the system is a basic parameter that determines the robustness of the security in banking software. In Oracle FLEXCUBE Universal Banking, we have employed a multi-pronged approach to ensure that these parameters are in place.
Table 1-1 Security Management Parameters
| Security Management Parameters | Description |
|---|---|
| Only Authorized Users Access the System | First, only authorized users can access the system with the help of a unique User ID and a password. Secondly, a user should have access rights to execute a function. |
| User Profiles | The user profile of a user contains the User ID, Password, and Functions to which the user has access. |
| Restricted Number of Unsuccessful Attempts | Define the maximum number of unsuccessful attempts after which a User ID should be disabled. When a User ID has been disabled, the administrator should enable it. The password of a user can be made applicable only for a fixed period. This forces the user to change the password at regular intervals thus reducing security risks. Further, define passwords that could be commonly used by a user as Restrictive Passwords at the user, user role, and bank level. A user cannot use any password that is listed as a Restrictive Password at any of these levels. |
| Restricted Access to Branches | Indicate the branches from where a user can operate in the Restricted Access screen. |
| All Activities Tracked | An extensive log is kept of all the activities on the system. The user can generate reports on the usage of the system anytime. These reports give details of unsuccessful attempts at accessing the system along with the nature of these attempts. It could be an invalid password attempt, the last login time of a user, etc. |
| Audit Trail | Whenever a record is saved in the module, the ID of the user who saved the record is displayed in the Input By field at the bottom of the screen. The date and time at which the record is saved are displayed in the Date/Time field. A record that is entered should be authorized by a user, bearing a different login ID, before the EOD is run. Once the record is authorized, the ID of the user who authorized the record will be displayed in the Authorized By field. The date and time at which the record was authorized are displayed in the Date/Time field positioned next to the Authorized By field. The number of modifications that have happened to the record is stored in the field Modification Number. The status of the record whether it is Open or Closed is also recorded in the Open check box. |
The topic contains following sub-topics:
- Maintain SMS Banks Parameters
This topic explains systematic instructions to maintain SMS bank parameters. - Maintain Password Restriction Details in SMS Banks Parameters
This topic explains systematic instructions to process password restrictions. - Maintain Bank Restriction
This topic explains systematic instructions to maintain bank restrictions. - Maintain User Credential Change Details
This topic explains systematic instructions to process the User Credentials Change screen. - Maintain Branch Restrictions
This topic explains systematic instructions to maintain the branch restrictions. - Maintain Function Description
This topic explains systematic instructions to maintain function descriptions. - Define Menu
This topic describes the process of defining the main and sub-menus for the Oracle FLEXCUBE Universal Banking. - Define Password Restriction
This topic explains systematic instructions to define password restrictions. - Maintain Roles
This topic explains systematic instructions to maintain the role profiles. - Process Role Maintenance Details
This topic explains systematic instructions to process role maintenance details. - Maintain Report Details for Role
This topic provides systematic instructions to maintain report details in the Role Maintenance screen. - Maintain Batch Details for Role
This topic provides systematic instructions to maintain batch details in the Role Maintenance screen. - Maintain Online Details for Role
This topic provides systematic instructions to maintain online details in the Role Maintenance screen. - Maintain Access Rights for Role
This topic explains systematic instructions to maintain access stage rights for the function ID. - Maintain Account Class Restrictions for Role
This topic explains systematic instructions to maintain account class restrictions. - Maintain Branch Restriction Details for Role
This topic explains systematic instructions to maintain branch restrictions for the role profile. - Maintain Rights for Role
This topic explains systematic instructions to process the necessary rights to perform various operations in respect of incoming and outgoing messages. - Define Roles for Oracle FLEXCUBE Universal Banking Branch Users
This topic explains systematic instructions to define roles for Oracle FLEXCUBE Universal Banking branch users. - Maintain User Holidays
This topic explains systematic instructions to maintain user holidays. - Process User Holiday Summary
This topic explains systematic instructions to process user holiday summary details. - Maintain User Creation Screen
This topic explains systematic instructions to create a user through the User Creation screen. - Maintain Users
This topic explains systematic instructions to create user profiles. - Maintain Roles for Users
This topic explains systematic instructions to attach a user profile to a role in the Roles screen. - Maintain Rights for Users
This topic explains systematic instructions to maintain rights in the User Maintenance screen. - Maintain Functions for Users
This topic explains systematic instructions to maintain functions in the User Maintenance screen. - Maintain Account Class Restrictions for Users
This topic explains systematic instructions to specify account class restrictions. - Maintain Branch Details for Users
This topic explains systematic instructions to maintain branch details in the User Maintenance screen. - Maintain Product Restrictions for Users
This topic explains systematic instructions to maintain product details in the User Maintenance screen. - Maintain Disallowed Functions for Users
This topic explains systematic instructions to maintain disallowed functions in the User Maintenance screen. - Maintain Centralized Role Details for Users
This topic explains systematic instructions to maintain centralized role details in the User Maintenance screen. - Maintain Dashboard Mapping Details for Users
This topic explains systematic instructions to maintain dashboard mapping details in the User Maintenance screen. - Maintain Access Group Restrictions for Users
This topic explains systematic instructions to maintain the access group restrictions in the User Maintenance screen. - Maintain Masking Details
This topic explains systematic instructions to maintain masking details. - Forget Customer
This topic explains the detailed information about forget customer. - Log Access
This topic describes an overview of the different logs and their access. - Maintain Department Details
This topic explains systematic instructions to maintain department details. - Maintain Process Codes
This topic explains systematic instructions to maintain process codes. - Single Sign On Enabled Environment
This topic describes an overview of the Single Sign On enabled environment. - Maintain Entities
This topic explains systematic instructions to maintain entities.