How To Restrict Delegated Role Administrator From Seeing All OIM Roles In OIM 11g
(Doc ID 1321766.1)
Last updated on OCTOBER 08, 2019
Applies to:Identity Manager - Version 188.8.131.52.0 to 184.108.40.206.9 [Release 11g]
Information in this document applies to any platform.
Need to delegate Role Membership Administration to certain users and limit this to specific roles.
- <USER_1> is able to administrate the memberships of the OIM Role <ROLE_1>.
- <USER_2> is able to administrate the memberships of the OIM Role <ROLE_2>.
- <USER_1> should only be able to manage <ROLE_1> but not <ROLE_2> (or any other <ROLE_X>).
This was possible in OIM 9.1.0.x. but you cannot achieve this functionality in OIM 11g since each user who is able to perform role administration is able to view every role in the Organization.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!