Fusion HCM Security Specialist Lesson 3 v1.0

1
For Oracle employees and authorized partners only. Do not distribute to third parties.
1-1
2013 Oracle Corporation Proprietary and Confidential
<Insert Picture Here>
Job Roles and Duty Roles
Safe Harbor Statement

The following is intended to outline our general
product direction. It is intended for information
purposes only, and may not be incorporated into any
contract. It is not a commitment to deliver any
material, code, or functionality, and should not be
relied upon in making purchasing decisions.
The development, release, and timing of any
features or functionality described for Oracles
products remains at the sole discretion of Oracle.
3
Oracle Training Materials Usage

Agreement
Use of this Site (Site) or Materials constitutes agreement with the following terms and conditions:
1. Oracle Corporation (Oracle) is pleased to allow its business partner (Partner) to download and copy
the information, documents, and the online training courses (collectively, Materials") found on this Site.
The use of the Materials is restricted to the non-commercial, internal training of the Partners employees
only. The Materials may not be used for training, promotion, or sales to customers or other partners or
third parties.
2. All the Materials are trademarks of Oracle and are proprietary information of Oracle. Partner or other
third party at no time has any right to resell, redistribute or create derivative works from the Materials.
3. Oracle disclaims any warranties or representations as to the accuracy or completeness of any
Materials. Materials are provided "as is" without warranty of any kind, either express or implied, including
without limitation warranties of merchantability, fitness for a particular purpose, and non-infringement.
4. Under no circumstances shall Oracle or the Oracle Authorized Delivery Partner be liable for any loss,
damage, liability or expense incurred or suffered which is claimed to have resulted from use of this Site of
Materials. As a condition of use of the Materials, Partner agrees to indemnify Oracle from and against any
and all actions, claims, losses, damages, liabilities and expenses (including reasonable attorneys' fees)
arising out of Partners use of the Materials.
5. Reference materials including but not limited to those identified in the Boot Camp manifest can not be
redistributed in any format without Oracle written consent.
4
1-4
Agenda
Job Roles and Duty Roles
HCM security management data stores
Regenerating data roles
5
Learning Objectives
At the end of this lesson you should be able to:
Describe Job Roles and Duty Roles
Understand HCM security management data stores
Explain regenerating data roles
6
Section 1:
Describe Job Roles and Duty

Roles
7
1-7
Fusion Applications Security Model

Role-Based Access Control
Access is via Roles
8
1-8
Fusion Application Secuirty Model

Role-Based Access Control
WHO can do WHAT on WHICH set of data?

Who
What
Which Data
Line Managers
Can create
performance
document
For workers in their

reporting hierarchy
Employees
Can view pay slip
For themselves
Payroll Managers
Can report payroll

balances
For specified
payrolls
Human Resource
Specialists
Can transfer
employees
For specified
countries
9
Types of Roles
Abstract Role
Data Role
Job Role
Duty Role
Assigned directly
to the users
Assigned directly
to the users
Not assigned
directly to the
users
Not assigned
directly to the
users
e.g. Employee,
Line Manager
and Contingent
Worker
e.g.
HRSpecialist_View
All, Payroll
Administrator US
Dept1 etc
e.g. Payroll
Administrator ,
Compensation
Analyst etc
Security privileges
attached
functional
privileges and
data privileges
10
Types of Roles
Abstract Role
Abstract roles define a worker's role in the enterprise
independently of the job that the worker is hired to do.
11
Types of Roles
Data Role
Data role allows a user to access a set of workers/organizations
for a given task
12
Types of Roles
Data Role (Security Profiles)
Security profiles are used to create data roles
13
Types of Roles
Job Role
A job role provides the access to a set of tasks that a worker
is hired to perform
14
Types of Roles
Duty Role
A duty role represent
the individual duties
that users with those
job or abstract roles
can perform. Duty
roles are inherited by
job and abstract roles;
they can also be
inherited by other duty
roles
15
Implementing Job Roles
16
17
18
19
Manage Job Roles
20
Manage Job Roles
21
Manage Job Roles
22
Manage Job Roles
23
Manage Job Roles
24
Manage Duty Roles
25
1 - 25
Manage Duty Roles
26
1 - 26
Manage Duty Roles
27
1 - 27
Manage Duty Roles
28
1 - 28
Manage Duty Roles
29
1 - 29
Manage Duty Roles
30
1 - 30
Manage Duty Roles
31
1 - 31
Manage Duty Roles
32
1 - 32
Manage Duty Roles
33
1 - 33
Role Inheritance Recap
34
Role Inheritance Recap
4
35
1
36
Welcome Hailie, our new Compensation Manager!

US Compensation Manager Data Role
US Organizations
Non Executive Positions
US Legislative Data Group
Comp Related Document Types
Hailie is provisioned with the Compensation Manager

role
plus the Employee and Line Manager Abstract Roles
37
Section 2:
Understand HCM security

management data stores
38
1 - 38
HCM Security Management Data Stores
39
Section 3:
Explain regenerating data

roles
40
1 - 40
Regenerating Data Roles

Regenerate a data role if you make any changes to the
role hierarchy that underlies the data role
41
Summary of the lesson
Understanding of Fusion Security Model

Different types of roles and how they are defined
Managing Job Roles and Duty Roles
Understanding of HCM security management data
stores
Regenerating data roles
42
Module Review
43
1 - 43
Key Points
Job roles represent the jobs into which users are hired
Users are directly assigned to abstract roles, but they
are not directly assigned to job roles
Abstract and job roles inherit many duty roles
Oracle Identity Manager (OIM) maintains user accounts
in the Oracle Fusion Applications Identity Store
Duty roles are created in Authorization Policy Manager
(APM) and stored in the Policy Store, along with
function security policies
Regenerating a role causes all its data security policies
to be updated based on changes to its role hierarchy
44
45
1 - 45
46
1 - 46

Fusion HCM Security Specialist Lesson 3 v1.0

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Fusion HCM Security Specialist Lesson 3 v1.0

Uploaded by

Copyright:

Available Formats

1

2013 Oracle Corporation Proprietary and Confidential

<Insert Picture Here>

Job Roles and Duty Roles

Safe Harbor Statement

Oracle Training Materials Usage

2013 Oracle Corporation Proprietary and Confidential

Describe Job Roles and Duty

2013 Oracle Corporation Proprietary and Confidential

Fusion Applications Security Model

Access is via Roles

2013 Oracle Corporation Proprietary and Confidential

Fusion Application Secuirty Model

WHO can do WHAT on WHICH set of data?

For workers in their

Can view pay slip

Can report payroll

Implementing Job Roles

Implementing Job Roles

Implementing Job Roles

Implementing Job Roles

Manage Job Roles

Manage Job Roles

Manage Job Roles

Manage Job Roles

Manage Job Roles

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Manage Duty Roles

2013 Oracle Corporation Proprietary and Confidential

Role Inheritance Recap

Role Inheritance Recap

Welcome Hailie, our new Compensation Manager!

Hailie is provisioned with the Compensation Manager

plus the Employee and Line Manager Abstract Roles

Understand HCM security

2013 Oracle Corporation Proprietary and Confidential

HCM Security Management Data Stores

Explain regenerating data

2013 Oracle Corporation Proprietary and Confidential

Regenerating Data Roles

Summary of the lesson

Understanding of Fusion Security Model

2013 Oracle Corporation Proprietary and Confidential

2013 Oracle Corporation Proprietary and Confidential

2013 Oracle Corporation Proprietary and Confidential

You might also like