Access to PBCS components is controlled by the predefined user roles. Service Administrators or users with Access Control Manager can assign users to application-specific roles of planning.
For example, Service Administrators can assign a user to the Approval Administrator role of a planning application to enable the user to perform approvals-related activities.
Additionally, Service Administrators can create groups and assign roles to them. They can grant roles to many users at once, thereby reducing administrative overheads.
Roles can be assigned at the application level. It enhances the access rights of users, but it does not override privileges granted by a predefined role.
Performs all Planning and Planning Modules including granting roles to users. This role should be granted to functional experts who need to create and administer Planning, and Planning Modules.
Power UserViews and interacts with data. This role grants high-level access to several functional areas within an environment and should be granted to department heads and business unit managers, and business users in charge of a region who need to control the approval process.
A Power User can perform these activities:
User
The User role was created by renaming the Planner role. If your service was provisioned after May 2016, you will see the User role and not the Planner role.
A User/Planner can perform these activities:
Viewer
Views and analyzes data through forms and data access tools. Typically, this role should be assigned to executives who need to view business plans during the budgeting process.
You can assign predefined roles to users while creating them or by loading user assignments to role from a CSV file.
Any PBCS user assigned to the Identity Domain Administrator role can manage users and predefined role assignments.
Managing Groups
PBCS uses an internal repository to support role assignments at the application-level and to store information on the groups that you use during the role assignment process.
PBCS users and other groups can be members of groups maintained using Access Control. Users can be granted application roles by assigning a role to the group.
To enable you to view user assignments PBCS lists the predefined roles as groups. You cannot modify or assign roles to them from Access Control. Also, PBCS users, who are assigned to predefined roles, are listed in Access Control so that they can be added as group members.
In Manage Groups, the groups are by default sorted by Group Name values.
You can manage the groups by:
Creating GroupsService Administrators or users with Access Control Manager application role can create and manage groups. PBCS users and other groups can be members of a group.
To create groups:
Modifying Groups
Service Administrators or users with Access Control Manager application role can modify group properties, including group name. The application roles assigned to the group and other security assignments are not affected if you rename a group.
To modify groups:
Note:
Group names may contain up to 71 characters. However, only the first 34 characters appear in the list displayed in the Available Groups column.
Deleting Groups
Service Administrators or users with Access Control Manager application role can delete groups. Deleting a group does not delete group members.
To delete a group:
Assigning a User to Many Groups
PBCS users can be members of many groups maintained using Access Control. Service Administrators or users with Access Control Manager application role can assign a user to many groups.
At any given time, a user can be a member of a maximum of 1,000 groups either directly or indirectly.
Want to know more about Oracle? Please complete the form below and we'll get back to you shortly.
Oracle
Oracle has the most comprehensive suite of integrated, global business applications that enable organizations to make better decisions, reduce cost..