Supplier Management

Get Involved. Join the Conversation.

Topic

    Shivani Roy
    Data Access Control on Supplier SitesAnswered
    Topic posted January 31, 2019 by Shivani RoyBlue Ribbon: 750+ Points, last edited January 31, 2019, tagged Security, Setup, Tip 
    150 Views, 9 Comments
    Title:
    Data Access Control on Supplier Sites
    Summary:
    Understanding the configuration of data access control on supplier sites
    Content:

    There are two levels of security that allows access the supplier site information:

    1. Security privileges:
      • View Supplier Site (POZ_VIEW_SUPPLIER_SITES_PRIV): Allows view access to supplier site information.
      • Maintain Supplier Site (POZ_MAINTAIN_SUPPLIER_SITES_PRIV): Allows edit access to supplier site information.
    2. Manage Procurement Agents setup task: Agents access control is given at the "Manage Suppliers" level on this setup task. This setup provides procurement business unit based edit access to users. Supplier sites being the entity linked to procurement business units the users can only edit those sites of a supplier for whom the agent access has been given at the "Manage Suppliers" level.

    Let’s review these use cases to better understand the data access control on supplier sites:

    • Configuration for senior management users who need view only access to sites:

    To ensure the user has view access to all sites information i.e. sites belonging to all procurement business units, grant the privilege View Supplier Site to the user.

    • Configuration for supplier administrators or managers who need edit access to sites.

               There are two steps involved:

    1. Identify the procurement business units for which the user should be allowed to maintain supplier site   information. For all such procurement business units, make the user a procurement agent allowed to Manage Suppliers in the setup task Manage Procurement Agents.
    2. After making the user procurement agent for all procurement business units that user is allowed to maintain sites from, grant the privilege Maintain Supplier Site.

    Points to Consider:

    • Maintain Supplier Site privilege should only be given to users who are allowed to edit supplier site information. If they are allowed to maintain supplier sites, they MUST be made procurement agents with Manage Suppliers action for the procurement business units.
    • If the user needs to have edit access to all sites, then make the user procurement agent for all the procurement business units along with the Maintain Supplier Site privilege.
    • For view only access to sites, user must only be granted the View Supplier Site privilege.Agent access setup will not be required in this case.

    Best Comment

    Ramesh Radhakrishnan

    Good Note Shivani yes

    Comment

     

    • Ramesh Radhakrishnan

      Good Note Shivani yes

    • sunhee lee

      Hi,

      I gave a supplier view-only role to my client.

      The issue is that he can see all BUs' sites.

      Could you help me the way to control to be shown only authorized Supplier Site?

      Regards,

      Sunhee

      • Piyush Singh

        Hi Sunhee,

        Restriction on view is applied only when user has maintain sites privilege, in which case user will view only those sites that he/she can manage. Hope this helps.

        Thanks,

        Piyush

    • sunhee lee

      Hi Piyush,

       

      Thanks for your prompt response and it's helpful.

      As I understand, you mean if I give a POZ_VIEW_SUPPLIER_SITES_PRIV role to users, they can see all sites regardless of procurement business units.

      However, my client has its own MDM system where supplier and customer information is maintained . So, they want to only view them, not to maintain in the ERP cloud.

      Is there a way for them to achieve this in the ERP cloud 19C?

      Regards,

      Sunhee

      • Piyush Singh

        Hi Sunhee,

        If none of your users will be maintaining sites in Oracle Cloud then you can try this workaround:

        1. Grant users the privilege to maintain sites,

        2. Since you get edit option with the maintain privilege, personalize the table to disable the edit options. 

        Please let us know if you have followup questions.

        Thanks,

        Piyush

    • sunhee lee

      Hi Piyush,

      Thanks again for your response and for providing a workaround solution.

      I'd like to get confirmation before applying your workaround.

      Is this the only way to provide view-only feature for allowed BU?

      In other words, does the standard behavior of view-only supplier site privilege show all sites of all procurement BU?

      Regards,

      Sunhee

      • Piyush Singh

        Hi Sunhee,

        That is right. As detailed in the original post, the view only privilege (i.e. without maintain privilege) will give users access to view all the sites.

        Thanks,

        Piyush

    • sunhee lee

      Hi Piyush,

      Thanks for your quick confirmation.

      Regards,

      Sunhee