What is the Setup in UMX to Allow User Administrator to Administer Only Employees in An Organization? (Doc ID 743549.1)

Last updated on OCTOBER 07, 2016

Applies to:

Oracle User Management - Version: 11.5.10.0 to 12.0.0 - Release: 11.5.10 to 12
Information in this document applies to any platform.
Checked for relevance on 20-OCT-2010

Goal

The steps below have been taken to allow a user to be able to administer employees from an organization:

1. Create a role for user management.
2. Assign a grant "User Administration privileges", with permission set "All User Administration Privileges", on object "User Management Person", and data context type set to "Instance Set", with access policy "People in the Administrator's own Organization"
3. Assign this role to a user.

With that setup, the granted user is not able to query any employee from the organization in User Management / Users screen, hence cannot administer them.

That note describes the setup to be done in UMX to allow a user to administer only the employees in an associated organization.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms