Last updated on JUNE 25, 2017
Applies to:Identity Manager - Version 126.96.36.199.4 and later
Information in this document applies to any platform.
OIM 'Role Authorizer' is unable to add/remove role memberships.
Scenario: Have a user who has been assigned the "Role Authorizer" admin role for a specific organization, so expecting that with this role, the user will be able to assign or revoke role memberships for other users. That is, login to the self service console, manage --> roles --> look for a role --> members tab --> assign a member to the role.
However the UI does not allow this with a banner at the top saying: "View only mode:You do not have appropriate permissions to edit this page."
According to the docs, someone with the "Role Authorizer" role should be able to grant roles to others as a direct operation. See:
This is a 11gR2 PS2 document and could not find a PS3 specific version of "Users Guide for Oracle Identity Manager". There is a "Oracle® Fusion Middleware Performing Self Service Tasks with Oracle Identity Manager" (see: https://docs.oracle.com/cd/E52734_01/oim/OMUSG/toc.htm) which does not mention at all what are the capabilities that one would expect if you had the Role Authorizer role for a specific organization
Why is a role authorizer unable to assign role memberships in OIM 188.8.131.52.X?
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
Million Knowledge Articles and hundreds of Community platforms