0% found this document useful (0 votes)
2K views8 pages

How To Identify What Role Is Needed To Submit A Single ESS Job Process (Doc ID 2051044.1)

Uploaded by

vishal_vishnu11
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
2K views8 pages

How To Identify What Role Is Needed To Submit A Single ESS Job Process (Doc ID 2051044.1)

Uploaded by

vishal_vishnu11
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 8

5/18/2020 Document 2051044.

1
Copyright (c) 2020, Oracle. All rights reserved. Oracle Confidential.

How to Identify what Role is Needed to Submit a Single ESS Job Process? (Doc ID 2051044.1)

In this Document

Goal
Solution
Starting with Release 11.12.1
Prior to Release 11.12.1 using APM
References

APPLIES TO:

Oracle Fusion Global Human Resources Cloud Service - Version 11.1.9.2.0 and later
Oracle Fusion Financials Common Module Cloud Service - Version 11.12.1.0.0 to 11.12.1.0.0 [Release 1.0]
Information in this document applies to any platform.

GOAL

What roles an user needs to be able to submit a particular schedule process?

For example if an user does not have the privileges to submit can get an error like:

"ESS-02002 User <MyUser> does not have sufficient privilege to perform operation submitRequest
JobDefinition://oracle/apps/ess/hcm/applicationsSecurity/AsePrivilegeDiscovererReportJob."

SOLUTION

Here are the steps taken to find the role needed to submit ESS job:
oracle.apps.ess.hcm.applicationsSecurity.JobDefinition.AsePrivilegeDiscovererReportJob:

Starting with Release 11.12.1

Since the Security Console does not have a way to search the resource names the following enhancement request have been
raised Bug 26789278 - PROVIDE A WAY TO SEARCH BY THE RESOURCE NAME

As an alternative the following steps can be performed:

Run SQL to identify which privilege is needed to run the job AsePrivilegeDiscovererReportJob:

select p.code privilege, t.name, perm.code code, perm.resource_type_name, perm.action


from fusion.ASE_PRIVILEGE_B p, fusion.ASE_PERMISSION_B perm, ASE_PRIVILEGE_TL t
where p.privilege_id = perm.privilege_id
and p.PRIVILEGE_ID=t.PRIVILEGE_ID (+)
and t.language='US'
and sysdate between p.effective_start_date and nvl(p.effective_end_date, sysdate)
and sysdate between perm.effective_start_date and

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 1/8
5/18/2020 Document 2051044.1
nvl(perm.effective_end_date, sysdate)
and perm.code like '%AsePrivilegeDiscovererReportJob'

Following results will be display:

PRIVILEGE NAME
CODE
RESOURCE_TYPE_NAME ACTION
ASE_RUN_PRIVILEGE_DISCOVERER_REPORT_PRIV Run Privilege Discoverer Report
oracle.apps.ess.hcm.applicationsSecurity.JobDefinition.AsePrivilegeDiscovererReportJob
ESSMetadataResourceType update,execute,delete,read

The results telling that in order to run the ESS job AsePrivilegeDiscovererReportJob the user need to have privilege Run
Privilege Discoverer Report
In Security Console can identify which roles are needed

The following duty is needed to run the ESS job AsePrivilegeDiscovererReportJob: Security Reporting -
ORA_ASE_SECURITY_REPORTING_DUTY

An user need to have roles 'IT Security Manager' or 'IT Auditor'

Prior to Release 11.12.1 using APM

Login to APM - Entitlement Server


Navigate to hcm application -> Resource

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 2/8
5/18/2020 Document 2051044.1

Search by the ESS job Name: oracle.apps.ess.hcm.applicationsSecurity.JobDefinition.AsePrivilegeDiscovererReportJob

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 3/8
5/18/2020 Document 2051044.1

Press on 'Find Policies' button

Press 'Open' button

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 4/8
5/18/2020 Document 2051044.1

Press 'Info' button

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 5/8
5/18/2020 Document 2051044.1

The following duty is needed to run the above ESS job: Security Reporting -
ORA_ASE_SECURITY_REPORTING_DUTY

Search for Application Roles in hcm for ORA_ASE_SECURITY_REPORTING_DUTY

Navigate to 'Application Role Hierarchy' tab

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 6/8
5/18/2020 Document 2051044.1

Press on 'Is Inherited By'

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 7/8
5/18/2020 Document 2051044.1

'IT Security Manager' or 'IT Auditor' roles are needed to run the ESS job:
oracle.apps.ess.hcm.applicationsSecurity.JobDefinition.AsePrivilegeDiscovererReportJob

Didn't find what you are looking for?

https://support.oracle.com/epmos/faces/DocumentDisplay?_adf.ctrl-state=9dn9qem5d_77&id=2051044.1 8/8

You might also like