How to Restrict the Visibility of the Accounts and Entitlments tabs for Requesters But Keep it for the Owners (Doc ID 2251631.1)

Last updated on MAY 01, 2023

Applies to:

Goal

This document presents an OIM UI  customization, that will allow the requester users to raise requests for other users, but will restrict the requester users from seeing what other Accounts and Entitlements are already assigned to the target users.

Example:
1. user A and user B both are from the same organization
2. User A should be able to raise request for accounts provisioning for user B. At the same time, user A should not be able to view the accounts and entitlements details of User B.

Issue : To provide end user with capability to raise request for others for accounts or entitlements we need the "Grant user entitlement"  Admin Role to User A.

But the "Grant user entitlement" is a kind of parent capability for the "Entitlement entity" and if this is provided to end user, then he/she will automatically inherit view account and entitlement capabilities.

Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.