1 Overview of Access Control

Access to Oracle Enterprise Performance Management Cloud components are controlled by the predefined roles in the identity domain to which users are assigned. Service Administrators or users with Access Control - Manage application role can assign users or groups to application-specific roles to enable them to complete additional tasks for that application in the environment. Assigning roles to such groups enables Service Administrators to grant roles to many users at once, thereby reducing administrative overheads.

For example, Service Administrators can assign a user or groups to the Approval Administrator role of a Planning application to enable the users to perform approvals-related activities.

Assigning roles at the application-level can only enhance the access rights of users; none of the privileges granted by a predefined role can be curtailed by roles assigned at the application-level.

Access Control enables you to complete these activities in an environment:

• Managing Groups

• Assigning Application Roles to a Group or a User

• Generating a Role Assignment Report for a User or Group

• Viewing the Role Assignment Report for the Environment

• Viewing the User Login Report

Tutorial Link

Follow this tutorial Setting Up Security in Cloud EPM Business Processes to learn about the layers of security in EPM Cloud business processes and how to manage security using Access Control and access permissions.