E-Business Suite user accounts in One Identity Manager cannot be physically deleted. If a user account is deleted through the result list or the menu bar, the user account is deactivated. However, it still physically exists. After confirmation of the security prompt, the status of the user account is set to INACTIVE. The current date is stored as the last validity date of the user account (Active to (date)).
NOTE: As long as an account definition for an employee is valid, the employee retains the user account that was created by it. If the account definition assignment is removed, the user account that was created from this account definition is disabled.
Related topics
E-Business Suite User accounts are assigned permissions for objects Oracle E-Business Suite by means of responsibilities. Responsibilities cannot be assigned to user accounts directly. Instead, they are inherited by means of security groups. Permissions in Oracle E-Business Suite are characterized by the combination of responsibilities and security groups. These combinations are mapped in the One Identity Manager database as E-Business Suite permissions.
To edit the main data of an entitlement:
-
In the Manager, select the Oracle E-Business Suite > entitlements category.
-
To edit an entitlement, select the entitlement in the result list and run the Change main data task.
- OR -
To create a entitlement, click in the result list.
This opens the main data form for an E-Business Suite entitlement.
-
Edit the main data of the entitlement.
- Save the changes.
Detailed information about this topic
For an E-Business Suite entitlement, enter the following main data:
Table 36: General main data of an entitlement
E-Business Suite Responsibility |
Responsibility for which the entitlement is to be created The responsibility must belong to the same E-Business Suite system as the security group. |
Security group |
Security group for which the entitlement is to be created. The security group must belong to the same E-Business Suite system as the responsibility. |
Display name |
Display name for the entitlement |
Category |
Categories for the inheritance of entitlements to user accounts User accounts can selectively inherit permissions. To do this, entitlements, and user accounts are divided into categories.
Select one or more categories from the menu. |
Risk index |
Value for evaluating the risk of assigning the entitlement to user accounts. Enter a value between 0 and 1. This field is only visible if the QER | CalculateRiskIndex configuration parameter is set. For more information, see the One Identity Manager Risk Assessment Administration Guide. |
Service item |
Service item for requesting the entitlement through the IT Shop. |
IT Shop |
Specifies whether the entitlement can be requested through the IT Shop. This entitlement can be requested by your employees through the Web Portal and granted using a defined approval process. The entitlement can still be assigned directly to user accounts and hierarchical roles. |
Only for use in IT Shop |
Specifies whether the entitlement can only be requested through the IT Shop. This entitlement can be requested by your employees through the Web Portal and granted using a defined approval process. Direct assignment of the entitlement to hierarchical roles or user accounts is not permitted. |
Related topics