Security Console in Oracle HCM Fusion

The Security Console in Oracle HCM Fusion is the central tool for
managing user access, roles, and security policies. It allows
administrators to control who can access what within the system,
ensuring data protection and compliance.

Navigation Path:
➡ Navigator → Tools → Security Console.

Key Functions of the Security Console

The Security Console provides several key functionalities, including user
account management, role assignments, role customization, security
auditing, and role visualization.

Function Purpose

User Management Create, edit, reset, and disable

user accounts.

Role Management Assign roles to users and manage

role hierarchies.

Data Security Management Define which users can access

which data.

Security Policies Configure role-based access

control (RBAC).

Audit & Reporting Track changes to user roles and

access permissions.

Role Visualization View and modify role relationships

and hierarchies.

SECURITY ADMINISTRATION
Definition: Security administration in Oracle HCM Fusion revolves around
managing user access, roles, and data security to ensure the right people
have the appropriate level of access to HR data and functionalities.

There are two major concepts falls under the Security Administration

1. User Account Creation

2. RBAC (ROLE BASED ACCESS CONTROL)

User Account Creation:

a. Automatic User Account Creation

b. Manual User Account Creation

Automatic User Account Creation (Recommended)

Oracle Fusion can automatically create user accounts when an employee

or worker is hired in Core HR.

This happens when the "Send User Name and Password" option is
enabled.
The system generates login credentials and sends them to the user via
email.

Process:

Navigate to My Client Groups → New Person → Hire an Employee.

Enter the required employee details.

Under the "User Account Information" section, ensure the “Create user
account” option is enabled.

Once the hiring process is completed, the system automatically

provisions the user account.

Manual User Account Creation

If an account is not created automatically, an administrator can manually

create it.
Process:

Go to Security Console:
Navigator → Tools → Security Console Click on "Users" → "Add User Account".
Enter Required Details:

User Name (usually Employee ID or Email).

First Name & Last Name.
Email Address (for password communication).
Assign Roles:
Add appropriate Abstract, Job, or Data roles.
Click "Save and Close".

RBAC (ROLE BASED ACCESS CONTROL)

Role-Based Access Control (RBAC) in Oracle HCM Fusion is a security

model that controls user access to data and functionalities based on their
assigned roles.

Key Concept: Instead of assigning permissions to individual users, roles

are assigned, and those roles define what a user can view, edit, approve,
or delete in the system.

Why is RBAC Important?

● Ensures data security – Only authorized users can access sensitive
HR data.
● Prevents unauthorized access – Restricts users to the information
they need.
● Simplifies administration – Managing roles is easier than assigning
permissions one by one.
● Supports compliance – Ensures that HR, Payroll, and IT follow
security best practices.

Features of RBAC
● RBAC ensures that users have appropriate access based on their
job responsibilities.
● Roles define user permissions, rather than assigning access to
individuals.
● Security Console is used to manage roles, security policies, and user
assignments.
● Data Security Policies restrict access to specific records, employees,
and locations.
● Custom roles can be created to align with business-specific needs.