Scribd
Upload
4 views1 page

Security Final Notes

The document outlines the security roles within an enterprise, including abstract roles, job roles, and duty roles, each serving different purposes in user access management. It specifies that duty roles grant access to various resources but are not assigned directly to users, while job and abstract roles inherit these duty roles. Additionally, it details user-name formats, password expiry, and the export of security settings, emphasizing the need for the IT Security Manager role to access the Security Console.

Uploaded by

منذر رضا
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
4 views1 page

Security Final Notes

The document outlines the security roles within an enterprise, including abstract roles, job roles, and duty roles, each serving different purposes in user access management. It specifies that duty roles grant access to various resources but are not assigned directly to users, while job and abstract roles inherit these duty roles. Additionally, it details user-name formats, password expiry, and the export of security settings, emphasizing the need for the IT Security Manager role to access the Security Console.

Uploaded by

منذر رضا
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

Security

• Users can have any number of roles.


• Abstract roles represent a worker's role in the enterprise independently of the
job that you hire the worker to do. You can create your own abstract roles.
• Job roles represent the job that you hire a worker to perform. You can
create your own job roles.
• Duty roles represent the individual duties that users perform as part of
their job. They grant access to work areas, dashboards, task flows, application
pages, reports, batch programs, and so on.
• You don't assign duty roles directly to users, unlike abstract and job roles.
• Job and abstract roles inherit duty roles and aggregate privileges..
• Duty roles can inherit other duty roles and aggregate privileges.
• Aggregate privileges are roles that combine the functional privilege for an
individual task or duty with the relevant data security policies.
• Creating, modifying, and copying aggregate privileges is not allowed.
• Aggregate privileges don’t inherit any kind of role.
• You can include the predefined aggregate privileges in your custom job and
abstract roles. You assign aggregate privileges to these roles directly.
• If you copy a job or abstract role, then the source role's aggregate privileges are
never copied.
• You must have the IT Security Manager role to use the Security Console.
• IT Security manager role inherits the Security Management and Security
Reporting duty roles.
• We have four user-name formats available: 1) E-mail 2) Firstname.Lastname 3)
Flastname 4) Person or party number
• Default value for password expiry is 90 days.
• When we import or export security settings, three things get exported: Security
Console Admin settings, Security console user category, Security control user
category notifications.
• Function security is a statement of what actions you can perform in which user
interface pages.
• Data security is a statement of what action can be taken against which data.

You might also like