My Oracle Support Banner

E-SEC: PT 8.58 User Can Save a Blank Role (Row) On The User Profile Roles Tab Which Causes a SYSAUDIT SEC Entry SEC-06 & SEC-19 (Doc ID 2863564.1)

Last updated on APRIL 18, 2022

Applies to:

PeopleSoft Enterprise PT PeopleTools - Version 8.58 and later
Information in this document applies to any platform.

Symptoms

 When adding a new role to a user profile, under PeopleTools > Security > User Profiles > Roles, you can remove a role title, without deleting the row, and save. The system do not allow to save a blank role when added newly, however when we blank out an existing role and save, the system allows to save the same. And the same can be queried in PSROLEUSER.

The SYSAUDIT report for section- (SEC-06) User Profile references a Role that does not exist: and (SEC-19) Role named in a User-Role relationship does not exist in the Role Definition table:, the blank role is referenced. This action was not allowed in PT 8.57 or lower PeopleTools versions. It first appeared in PT 8.58.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.