Oracle Risk Management Cloud

Similar documents
Oracle HCM Cloud Common Release 12. What s New

Oracle Social Network

Oracle Learn Cloud. Taleo Release 16B.1. Release Content Document

TABLE OF CONTENTS DOCUMENT HISTORY 3

Oracle Financial Consolidation and Close Cloud. What s New in the February Update (17.02)

See What's Coming in Oracle Taleo Business Edition Cloud Service

Oracle Financial Consolidation and Close Cloud. What s New in the November Update (16.11)

Oracle Financial Consolidation and Close Cloud. What s New in the December Update (16.12)

Oracle Enterprise Performance Reporting Cloud. What s New in September 2016 Release (16.09)

Loading User Update Requests Using HCM Data Loader

Oracle Financial Consolidation and Close Cloud

April Understanding Federated Single Sign-On (SSO) Process

Oracle Financial Consolidation and Close Cloud. What s New in the March Update (17.03)

TABLE OF CONTENTS DOCUMENT HISTORY 3

Creating Custom Project Administrator Role to Review Project Performance and Analyze KPI Categories

October Oracle Application Express Statement of Direction

ORACLE SERVICES FOR APPLICATION MIGRATIONS TO ORACLE HARDWARE INFRASTRUCTURES

Oracle Planning and Budgeting Cloud

Oracle HCM Cloud Common Features

Oracle Service Cloud Agent Browser UI. November What s New

Oracle Learn Cloud. What s New in Release 15B.1

TABLE OF CONTENTS DOCUMENT HISTORY 3

JD Edwards EnterpriseOne Licensing

ORACLE DATABASE LIFECYCLE MANAGEMENT PACK

Oracle Express CPQ for Salesforce.com

Generate Invoice and Revenue for Labor Transactions Based on Rates Defined for Project and Task

TABLE OF CONTENTS DOCUMENT HISTORY 3

VISUAL APPLICATION CREATION AND PUBLISHING FOR ANYONE

Correction Documents for Poland

Oracle Financial Consolidation and Close Cloud. What s New in the August Update (17.08)

Oracle. Human Capital Management Cloud Securing HCM. Release 13 (update 18A)

Oracle. Human Capital Management Cloud Securing HCM. Release 13 (update 18B)

Oracle Social Network. What's New in Release 11

Oracle. Applications Cloud Using Functional Setup Manager. Release 13 (update 18A)

Oracle. Loyalty Cloud Securing Loyalty. Release 13 (update 18B)

TABLE OF CONTENTS DOCUMENT HISTORY

Oracle Enterprise Data Quality New Features Overview

Oracle Utilities Work and Asset Management Integration to Primavera P6 Enterprise Project Portfolio Management

DATA INTEGRATION PLATFORM CLOUD. Experience Powerful Data Integration in the Cloud

August 6, Oracle APEX Statement of Direction

Oracle Data Provider for.net Microsoft.NET Core and Entity Framework Core O R A C L E S T A T E M E N T O F D I R E C T I O N F E B R U A R Y

Oracle Utilities CC&B V2.3.1 and MDM V2.0.1 Integrations. Utility Reference Model Synchronize Master Data

Oracle Payment Interface Token Proxy Service Security Guide Release 6.1 E November 2017

Automatic Receipts Reversal Processing

Oracle Identity Manager Connector Guide for Dropbox. Release

What s New for Oracle Cloud Stack Manager. Topics: July Oracle Cloud. What's New for Oracle Cloud Stack Release

TABLE OF CONTENTS DOCUMENT HISTORY

Installation Instructions: Oracle XML DB XFILES Demonstration. An Oracle White Paper: November 2011

See What's Coming in Oracle CPQ Cloud

Oracle Field Service Cloud Release 18C. New Feature Summary

NOSQL DATABASE CLOUD SERVICE. Flexible Data Models. Zero Administration. Automatic Scaling.

Oracle Enterprise Performance Reporting Cloud. What s New in February 2017 Update (17.02)

Tutorial on How to Publish an OCI Image Listing

Oracle Enterprise Performance Reporting Cloud. What s New in the November Update (16.11)

An Oracle White Paper September Security and the Oracle Database Cloud Service

Migration Best Practices for Oracle Access Manager 10gR3 deployments O R A C L E W H I T E P A P E R M A R C H 2015

Notification Template Limitations. Bridge Limitations

Microsoft Active Directory Plug-in User s Guide Release

Oracle Database Security Assessment Tool

Using the Oracle Business Intelligence Publisher Memory Guard Features. August 2013

Protecting Your Investment in Java SE

An Oracle White Paper November Primavera Unifier Integration Overview: A Web Services Integration Approach

Oracle Financial Consolidation and Close Cloud. October 2017 Update (17.10) What s New

Oracle Cloud Applications. Oracle Transactional Business Intelligence BI Catalog Folder Management. Release 11+

CONTAINER CLOUD SERVICE. Managing Containers Easily on Oracle Public Cloud

Security Guide Release 4.0

MySQL CLOUD SERVICE. Propel Innovation and Time-to-Market

Oracle Diagnostics Pack For Oracle Database

Oracle Database Vault

Oracle Taleo Cloud for Midsize (Taleo Business Edition)

Oracle Profitability and Cost Management Cloud. November 2017 Update (17.11) What s New

Oracle Responsys Release. Release Content Document. August 2016

Oracle Utilities Work and Asset Cloud Service End-User Provisioning Guide

Create Individual Membership. This step-by-step guide takes you through the process to create an Individual Membership.

Documentation Accessibility. Access to Oracle Support

Oracle Hospitality OPERA Exchange Interface Cloud Authentication. October 2017

ORACLE FABRIC MANAGER

Oracle Java SE Advanced for ISVs

Veritas NetBackup and Oracle Cloud Infrastructure Object Storage ORACLE HOW TO GUIDE FEBRUARY 2018

INTEGRATION CLOUD SERVICE. Accelerate Your Application Integration Across the Cloud and On Premises

Oracle Responsys Release 18C. New Feature Summary

Oracle Utilities Customer Care and Billing Release Utility Reference Model a Load Meter Reads

Oracle Hospitality Suite8 Export to Outlook User Manual Release 8.9. July 2015

Oracle Taleo Cloud for Midsize (Taleo Business Edition) Release 17B2. What s New

Contents Overview... 5 Upgrading Primavera Gateway... 7 Using Gateway Configuration Utilities... 9

Oracle Enterprise Performance Reporting Cloud

Quick Start for Coders and Approvers

Oracle Best Practices for Managing Fusion Application: Discovery of Fusion Instance in Enterprise Manager Cloud Control 12c

Oracle CIoud Infrastructure Load Balancing Connectivity with Ravello O R A C L E W H I T E P A P E R M A R C H

An Oracle Technical Article March Certification with Oracle Linux 4

APPLICATION BUILDER CLOUD. Application Creation Made Easy

Oracle WebLogic Portal O R A C L E S T A T EM EN T O F D I R E C T IO N F E B R U A R Y 2016

Oracle. Sales Cloud Securing Incentive Compensation. Release 13 (update 17D)

Microsoft Internet Information Services (IIS) Plug-in User s Guide Release

Cloud Operations for Oracle Cloud Machine ORACLE WHITE PAPER MARCH 2017

Oracle. ERP Cloud Securing ERP. Release 13 (update 18B)

Oracle Hospitality ecommerce Integration Cloud Service Security Guide Release 4.2 E

Oracle Fusion Applications Connect Program. Release 11gRelease 2

Oracle. Sales Cloud Securing Oracle Sales Cloud. Release 12

General Security Principles

Transcription:

Oracle Risk Management Cloud Release 12 New Feature Summary December 2016

TABLE OF CONTENTS REVISION HISTORY... 3 COMMON TECHNOLOGIES... 4 APPLICATIONS SECURITY... 4 User Account Management... 5 Administrator Password Management... 5 User Password Management (Self-Service)... 6 User Account Locking... 6 Enhanced Role Visualization... 6 Tabular Role Hierarchy View... 6 Search in Role Hierarchy Visualization... 6 User Name Generation Rules... 6 Password Policies... 6 Notification Templates... 7 Upgrade-Safe Management of Factory Shipped Roles... 7 Bridge for Microsoft Active Directory... 7 User Password Changes Audit Report... 7 Integrate Custom Identity Management Solution... 7 Password Reset... 7 Security Console... 7 RISK MANAGEMENT... 9 Changes to Security-Related Jobs... 9 Security Updates to Predefined Roles... 9 ORACLE FINANCIAL REPORTING COMPLIANCE CLOUD... 10 2

REVISION HISTORY This document will continue to evolve as existing sections change and new information is added. All updates are logged below, with the most recent updates at the top. Date What's Changed Notes 05 DEC 2016 Initial Document Creation 3

COMMON TECHNOLOGIES At Oracle, delivering products that reflect a superior and secure user experience is the result of an enormous investment. To understand your pain points, we spent countless hours examining how people like you actually work and use our enterprise applications. We then work closely with product management, security experts, strategy, and development to design innovative applications that help you to be more productive, secure, efficient, and effective. APPLICATIONS SECURITY Oracle Fusion Applications Security provides a single console where IT Security Managers and Administrators can perform various functions including user lifecycle management, role definition, security policy management (both functional and data), role hierarchy maintenance, username and password policy administration, and certificate management. The console also enables users to simulate the effect of security changes, to run security reports, and download a connector for integration with Microsoft Active Directory. In Release 12, Oracle Fusion Applications Security offers several new capabilities that offer customers the following benefits: A Simplified User Experience for the IT Security Manager - Prior to Release 12, security administration functions were distributed across Oracle Identity Management (OIM) and Authorization Policy Manager (APM). In Release 12, these functions are delivered through a single interface the Security Console. OIM and APM are no longer available in R12. Easy Integration with Identity and Access Management (IDM/IAM) Systems - New capabilities to synchronize user account information with Identity and Access Management (IDM/IAM) systems. This synchronization enables the delivery of a Single Sign-On experience through these systems. 4

For Microsoft Active Directory (AD) and Oracle Identity Management (OIM), customers can download and install connectors that will automatically synchronize user account information between Oracle Fusion Applications and these IDM systems. As in Release 11, customers must continue to log a Service Request (SR) to set up federated Single Sign-On (SSO) between these systems. Once federation is enabled, the connectors will synchronize the information. Release 12 also delivers a REST API based on the SCIM (System for Cross-Domain Identity Management) standard. Customers can use this API to create user accounts, modify user attributes (e.g. email), enable/disable users, and fetch user account and role information. An Upgrade-Safe Reference Role Model - Starting in Release 12, pre-defined roles that are shipped with Oracle Applications Security will be locked down. Customers will not be able to modify the functional and data security policies that are associated with these roles. They can, however, add new data security policies to these pre-defined roles. In addition, privileges and resources are protected. Users cannot create or modify these artifacts Locking down these security artifacts enables safe upgrades to pre-defined roles, since the possibility of conflict with customer introduced changes to these roles is now eliminated. This, in turn enables customers to safely adopt new enhancements that may be delivered with pre-defined roles in future releases. As in Release 11, customers can make copies of pre-defined roles and freely customize these copies. Enhanced Set of Self-Service Capabilities - Administrators are able to manage the entire user lifecycle. They can customize how notifications are generated and sent for various user lifecycle events including user account creation, and password management. Administrators can also tailor username and password generation by choosing from a list of shipped policies. USER ACCOUNT MANAGEMENT Create, manage, and assign user accounts using the Security Console. You can also search, retrieve, and manage user accounts automatically created for employees, contingent workers, supplier contacts, or partner contacts. ADMINISTRATOR PASSWORD MANAGEMENT Manage passwords of other user accounts as an administrator. You can auto-generate or manually enter a password for a user account. You can also define password lifecycle and complexity policies. Passwords will be automatically validated against these policies. 5

USER PASSWORD MANAGEMENT (SELF-SERVICE) Manage your own user account password. Your password will be automatically validated against the defined password lifecycle and complexity policies. USER ACCOUNT LOCKING Lock user accounts as an administrator. If you lock a user account, you will be temporarily preventing the user from logging in with that user account. You can also unlock a locked user account. ENHANCED ROLE VISUALIZATION View only certain components of a role in the graphic visualizer. You can view only the privileges, aggregate privileges or roles assigned to a role. You can also view the graphic visualizer in full screen mode and pan over a specific region in the graph. For complex roles, these features enable you to reduce the amount of information visualized and to focus on the area within the role hierarchy that requires your attention. TABULAR ROLE HIERARCHY VIEW View role hierarchies in a tabular view. You can switch between the graphic visualizer view and the tabular view. You can also export the data you view in the tabular view. SEARCH IN ROLE HIERARCHY VISUALIZATION Search and quickly locate security artifacts (nodes) in the role hierarchy visualization. You can search for privileges, roles or users in the visualization. USER NAME GENERATION RULES Define user name generation rules that will be used to auto-generate the user name when a user is created. You can define user name generation rules to be based on the user s first and last names, first initial plus last name, e-mail or person or party number. You can also choose to use a system generated user name if the rule fails to generate a user name. PASSWORD POLICIES Define policies for password management. These policies can define the duration for various password lifecycle events like password expiration and password warning generation. You can also set the complexity of generated passwords by choosing from a pre-defined list of rules. 6

NOTIFICATION TEMPLATES Define custom notification templates for your user account life cycle events. You can also use predefined notification templates. These templates will be used to generate notifications for events like user account created, user password reset and user password expiry warning. UPGRADE-SAFE MANAGEMENT OF FACTORY SHIPPED ROLES Identify a predefined (factory shipped) Oracle role when viewing the role. Predefined Oracle roles are locked and you cannot customize the Oracle delivered functional and data security policies associated with these roles. You can, however, add data security policies to these roles. BRIDGE FOR MICROSOFT ACTIVE DIRECTORY Simplify Single Sign-On with Microsoft Active Directory by downloading and installing the Active Directory Bridge from the Security Console. Automatically synchronize user account information between Oracle Fusion Applications Security and Microsoft Active Directory. USER PASSWORD CHANGES AUDIT REPORT Generate a report that lists password changes made by users. The report can be generated for changes made by specific users or for all changes made during a specific period. INTEGRATE CUSTOM IDENTITY MANAGEMENT SOLUTION Integrate optionally with your Identity Management solution for user and role management using industry standard System for Cross-domain Identity Management (SCIM) REST APIs and ATOM feeds. PASSWORD RESET Enhanced password reset flow. Now a notification email will be sent to the user who requests a password reset. The user will be required to click on this link within a specific period of time to change the password. This replaces the previous flow where users were required to answer a series of challenge questions to reset the password. SECURITY CONSOLE Streamline use of some of the functionality that you have used in the past with the Security Console. The Security Console now includes the following functionality: User Account information such as password, lock and unlock are managed in the security console. Roles are now managed directly in the Security Console and are no longer managed within Oracle Identity Manager or Authorization Policy Manager. 7

Privileges are predefined by Oracle and are no longer created or managed by the user. You can now view, create or change roles without first selecting an application. Resources are now granted through privilege and are no longer granted directly to Roles. 8

RISK MANAGEMENT Oracle Risk Management Cloud offers Financial Reporting Compliance, which documents your policies for identifying and resolving risk in your financial processes. CHANGES TO SECURITY-RELATED JOBS Changes have been made to jobs that run in Oracle Fusion Risk Management Cloud to synchronize users, roles, worklists, and other related security artifacts. The following changes have been made to areas under Risk Management Tools, Setup and Administration: A User and Role Security Synchronization job initiates predefined security objects when you set up applications in Risk Management Cloud. Subsequently, as you modify users or roles, this job synchronizes user and role definitions. Schedule this job to run regularly. A Worklist Security Synchronization job ensures that as user and role definitions change, users have appropriate access to worklists (notifications of tasks to be completed). Schedule this task to run regularly. However, the User and Role Security Synchronization job should always run first. These jobs replace jobs that no longer exist. The obsolete jobs include: o o Initiate Predefined Mappings, which had run from the Security Configuration page. Schedule Security Optimization, which had run from the Application Configuration page. SECURITY UPDATES TO PREDEFINED ROLES Changes have been made to some predefined duty roles in Oracle Fusion Risk Management Cloud Release 12. When you are upgrading from Release 11 to Release 12, review and compare any custom duty roles that used a copy of a predefined role and evaluate if any changes are necessary in Release 12. 9

ORACLE FINANCIAL REPORTING COMPLIANCE CLOUD Oracle Fusion Financial Reporting Compliance Cloud Service consolidates the process of documenting and assessing your business practices to satisfy financial reporting regulations, such as Sarbanes-Oxley and equivalent laws around the world and in the public sector. You can: --- Identify and assess financial reporting risk enterprise-wide. Respond to risks by selecting, assessing, testing, and strengthening financial reporting controls. Determine control and operational effectiveness accurately and comprehensively. Review and remediate issues for both control failures and audit findings. Certify controls and financial reports. 10

Copyright 2016, Oracle and/or its affiliates. All rights reserved. This document is provided for information purposes only, and the contents hereof are subject to change without notice. This document is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including implied warranties and conditions of merchantability or fitness for a particular purpose. We specifically disclaim any liability with respect to this document, and no contractual obligations are formed either directly or indirectly by this document. This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners. Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group. 11

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback