"AccessDeniedException: IAM-3054101" Error: User With Admin Role Having Role Related Capbility Is Unable to Add Self to A Role
(Doc ID 2167488.1)
Last updated on OCTOBER 11, 2020
Applies to:Identity Manager - Version 126.96.36.199.160719 to 188.8.131.52.160719 [Release 11g]
Information in this document applies to any platform.
User <ADMINUSER> belongs to an Admin Role<ADMINROLE> with capabilities:
. Grant Role Memberships
. Revoke Role Memberships
. Role Modify
. Role View/Search
<ADMINUSER> is able to add other users to some OIM Role <OIMROLE> but they cannot add themselves to the role.
If they try to add themselves to the role the following exception is thrown:
Note: capabilities Grant Role Memberships and Revoke Role Memberships are provided by fix 22664253, which was included in the OIM 184.108.40.206 Bundle Patches starting with 220.127.116.11.160719.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!