Posts

Posts

  • Pinaki Das
    Cloud instance name35.0
    Topic posted March 26, 2019 by Pinaki DasRed Ribbon: 250+ Points, tagged Financials, Fusion Applications Integration, Procurement, Project Portfolio Management, SaaS Integration in Integrations and Extensions public
    Title:
    Cloud instance name
    Summary:
    Query to fetch cloud instance name
    Content:

    Table: ASK_DEPLOYED_DOMAINS

    Schema: FUSION_SETUP

    The field EXTERNAL_VIRTUAL_HOST stores the external link

    Condition: DEPLOYED_DOMAIN_NAME='FADomain' (Check the domain name and replace the value)

    select         DEPLOYED_DOMAIN_ID,

     DEPLOYED_DOMAIN_NAME,

     EM_HOME_URL,

     INTERNAL_VIRTUAL_HOST,

     INTERNAL_VIRTUAL_PORT,

     EXTERNAL_VIRTUAL_HOST,

     EXTERNAL_VIRTUAL_PORT,

     JMX_PORT,

     NODE_MANAGER_PORT,

     ADMIN_HOST,

     ADMIN_PORT,

     LOGICAL_DOMAIN_ID,

     NODE_MANAGER_PROTOCOL,

     ADMIN_SERVER_NAME,

     APPLICATION_CLOUD_ID,

     INTERNAL_SERVER_PROTOCOL,

     EXTERNAL_SERVER_PROTOCOL,

     ADMIN_SERVER_PROTOCOL,

     OBJECT_VERSION_NUMBER,

     ENTERPRISE_ID,

     CREATION_DATE,

     CREATED_BY,

     LAST_UPDATED_BY,

     LAST_UPDATE_DATE,

     LAST_UPDATE_LOGIN

    From        ASK_DEPLOYED_DOMAINS

    Where  DEPLOYED_DOMAIN_NAME='FADomain'

    Version:
    18C
  • Lisa Ozkan
    Release 12 upgrade dates are now available on My Services!44.8
    Topic posted March 1, 2017 by Lisa OzkanSilver Medal: 2,000+ Points, tagged Financials, Procurement, Project Portfolio Management, Risk Management in ERP Members > ERP Announcements public
    Title:
    Release 12 upgrade dates are now available on My Services!
    Content:

    As of today, Oracle Applications Cloud (Fusion) customers can now view available Release 12 upgrade dates on My Services, and start scheduling their upgrades!

    Your Service Administrator will have four weeks to pick upgrade dates according to Oracle Applications Cloud - Release Upgrade Planning document. If you do not schedule your upgrade by this deadline, Oracle will schedule your upgrade dates.  Customers can still view/confirm/reschedule these dates through My Services up to one week before their upgrade date.

    Reminders:

    • No Service Requests (SR) are required and customers who log SRs will be redirected to My Services.
    • If your Service Administrator is no longer with the company, and you do not have a backup Service Administrator, or if the existing Service Administrator cannot login to My Services, submit an SR to regain access. Instructions can be found in Service Administrator Action List.
    • You may use the attached slide deck to help you during upgrade scheduling.

     

    Read These Important Upgrade Documents Available in MOS

  • Jack Desai
    Inbound and Outbound Data File Encryption through ERP...174.7
    Topic posted August 19, 2016 by Jack DesaiRed Ribbon: 250+ Points, tagged Cloud Integration, Export Bulk Data, Extensions, File Based Data Integration - FBDI, Financials, Fusion Applications Integration, Import Bulk Data, Integrated Cloud Services, PaaS - SaaS Extensions, Pre-built Integration, Procurement, Project Portfolio Management, REST Services, SaaS Integration, SOACS, SOAP Services, Supply Chain Management, Transaction Services in Integrations and Extensions public
    Title:
    Inbound and Outbound Data File Encryption through ERP Integration Service
    Summary:
    How to encrypt and decrypt data files between ERP Cloud and On-premise/PaaS
    Content:

    Introduction

    Since your inbound or outbound data files are transmitted over the internet and often times contain company sensitive information and financial transactions like journal entries, invoices, payments and bank records, data encryption is a critical and essential element in implementing your integrations with Oracle ERP Cloud. You can secure data files between Oracle ERP Cloud R11+ and your on-premise/PaaS applications or systems. This is supported through ERP integration service that supports 100+ interfaces across Financials, Project Portfolio Management, Procurement and Supply Chain Management.

    The following diagram illustrates the import integration flow (also known as File-Based Data Import - FBDI). Please refer this post for more details.

    The following diagram illustrates the export process (extracting data out from ERP Cloud). Please refer this post for more details.

    Oracle ERP Cloud supports Pretty Good Privacy (PGP) unsigned encryption with 1024 key size. There are two types of encryption keys:
    1.    Oracle ERP Cloud Key
    2.    Customer Key

    Oracle ERP Cloud PGP Key

    The public key is used by the customer to encrypt the data file and respective private key is used by import bulk data process to decrypt the data file before starting load and import process. The file stored in content server (UCM) remains encrypted. 

    Customer PGP Key

    ERP Cloud uses customer's public key to encrypt the extracted file and uploads to UCM. Customer uses their private key to decrypt the file in on-premise or PaaS systems. 
     

    Manage PGP Certificates

    Certificates establish keys for the encryption and decryption of data that Oracle Cloud applications exchange with other applications. The Oracle Fusion Applications Security Console is an easy-to-use administrative interface that you access by selecting Tools - Security Console on the home page or from the Navigator. Use the Certificates page in the Security Console functional area to manage PGP certificates.

    This is a Security Console Screen:

    Generate ERP Cloud PGP Certificate

    From the Certificates page, select the Generate option. In a Generate page, select the certificate format PGP, and enter values appropriate for the format.

    For a PGP certificate, these values include:

    • An alias (name) and passphrase to identify the certificate uniquely.
    • The algorithm by which keys are generated, DSA or RSA.
    • A key length – select 1024.

    Once the key is generated, customer must export the public key to encrypt the FBDI data file.

    Export Customer's PGP Public Key

    Follow these steps to export public key:

    1. From the Certificates page, select the menu available in the row for the certificate you want to export. Or open the details page for that certificate and select its Actions menu.
    2. In either menu, select Export, then Public Key
    3. Select a location for the export file. By default, this file is called [alias]_pub.asc

    Import Customer's PGP Public Key

    The customer public key will be used by ERP Cloud to encrypt outbound file. Customer will decrypt this file using their private key. Follow these steps to import customer's public key:

    1. On the Certificates page, select the Import button.
    2. In the Import page, select PGP and specify an alias (which need not match the alias of the file you are importing).
    3. Browse for the public-key file, and then select Import and Close.

    The Certificates page displays a record for the imported certificate, with the Private Key cell unchecked.

     

    Enabling Encryption in Import Process

    Please refer this post on automating bulk import process. This post will document additional information to encrypt the file only.

    When enabled, ERP Cloud will decrypt the inbound data file using cloud private key before starting load and import process. These are the following steps to enable encryption in your import process

    1. Encrypt Data (zip) File

    Encrypt inbound data (zip) file using Oracle ERP Cloud public key. Use "gpg" utility in Linux system to encrypt the file as follows:

    Import ERP Cloud public key (one-time configuration) using the following command

    gpg --import <MY_ERP_KEY_pub.asc>

    ###Verify the imported key using this command

    gpg --list-keys

    Once ­public key is imported, use the following command to encrypt your inbound data file:

     

    gpg --cipher-algo=AES -r=<alias> --encrypt <my_data_file>.zip

     

     

    The encrypted file will be renamed as <my_data_file>.zip.gpg.

    2. Add Encryption options in "importBulkData" Payload

    In importBulkData payload, provide the following job options

    Options

    Value

    FileEncryption PGPUNSIGNED

    FA_ALIAS

    ERP Cloud Key Alias Name

    CUSTOMER_ALIAS

    Customer Key Alias Name

     

    Example in your importBulkData request payload: <typ:jobOptions>FileEncryption=PGPUNSIGNED,FA_ALIAS=<ERP_CLOUD_KEY>,CUSTOMER_ALIAS=<CUSTOMER_KEY></typ:jobOptions>

    Note: Alias names are defined when you generate ERP Cloud key or import customer key.

    The following sample payload illustrates the Journal import process request payload:

       <soapenv:Body>
          <typ:importBulkData>
             <typ:document>
                <erp:Content>AAgACAMgAAAB5AQAAAAA=</erp:Content>
                <erp:FileName>journal_1234.zip</erp:FileName>
             </typ:document>
             <typ:jobDetails>
               <erp:JobName>/oracle/apps/ess/financials/generalLedger/programs/common,JournalImportLauncher</erp:JobName>
                <!--Optional:-->
                <erp:ParameterList>#NULL,#NULL,Balance Transfer,#NULL,1,jrd1,N,N,N</erp:ParameterList>
             </typ:jobDetails>
             <typ:notificationCode>10</typ:notificationCode>
             <typ:callbackURL>my_callbacl_endpoint_url</typ:callbackURL>
             <typ:jobOptions>FileEncryption=PGPUNSIGNED,FA_ALIAS=JACK_ERP_KEY,CUSTOMER_ALIAS=JACK_ERP_KEY</typ:jobOptions>
         </typ:importBulkData>
       </soapenv:Body>

     

     

    Enabling Encryption in Export Process

    Please refer this post on automating bulk export process. When enabled, ERP Cloud will encrypt extracted data file using customer’s public key and upload it to UCM. These are the following steps to enable encryption in import process

    1. Add Encryption options in "importBulkData" Payload

    In exportBulkData payload, provide the following job options

    Options

    Value

    FileEncryption PGPUNSIGNED

    FA_ALIAS

    ERP Cloud Key Alias Name

    CUSTOMER_ALIAS

    Customer Key Alias Name

     

    Example in your exportBulkData request payload: <typ:jobOptions>FileEncryption=PGPUNSIGNED,FA_ALIAS=<ERP_CLOUD_KEY>,CUSTOMER_ALIAS=<CUSTOMER_KEY></typ:jobOptions>

    Note: Alias names are defined when you generate ERP Cloud key or import customer key.

    The following sample payload illustrates the export process request payload:

      <soap:Body>
      <ns1:exportBulkData xmlns:ns1="http://xmlns.oracle.com/apps/financials/commonModules/shared/model/erpIntegrationService/types/">
                                <ns1:jobName>job_package_name,job_name</ns1:jobName>
        <ns1:parameterList>48,1001</ns1:parameterList>
        <ns1:jobOptions>FileEncryption=PGPUNSIGNED,FA_ALIAS=JACK_ERP_KEY,CUSTOMER_ALIAS=JACK_ERP_KEY</ns1:jobOptions>
        <ns1:callbackURL>30</ns1:callbackURL>
        <ns1:notificationCode>http://hostname:port/myCallbackService</ns1:notificationCode>

      </ns1:exportBulkData>
    </soap:Body>>

     

    2. Encrypt Data (zip) File

    Decrypt the output file using customer private key. To decrypt outbound data file:

    First you must import customer’s private key as follows:

    gpg --allow-secret-key-import --import <my_private.asc>

    ###Verify the imported key using this command

    gpg --list-keys

     

    Once customer’s private key is imported, use the following command to decrypt your outbound data file:

    gpg --decrypt <EncryptedFileName> > <DecryptedFileName>

     

    Conclusion

    This post provides detailed information on how to protect both inbound and outbound data file. This is in addition to SSL and Oracle Web Service Manager (OWSM) message protection policy over the internet.

  • Bradley Hughes
    Release 12 - Security Console Challenges and Colleague...44.3
    Topic posted April 26, 2017 by Bradley HughesSilver Trophy: 7,500+ Points, tagged Financials, HCM, Other, Procurement, Project Portfolio Management, Sales, SCM, Security, Tip in Applications Security public
    Title:
    Release 12 - Security Console Challenges and Colleague Password Reset Queries
    Summary:
    Help to resolve password resets for colleagues that have no Email and now no security questions
    Content:

    Hello,

    After reviewing the functionality within the Security Console for R12, we have discovered there are now no Security Questions available. The only functionality we can see that allows a colleague to reset their forgotten password, will require a Work Email Address. If Colleagues have no Work Email address, they will have to contact the operation in order to reset their password.

    The colleague can then log into Fusion immediately, without being prompted to change their password after initial log in. The Employee can reset their password by 'set preferences' but this is a manual task.

    Is anybody aware of any available functionality that allows a user, without an email address in the system to reset their password? or any workarounds that will prevent a huge volume of calls to the operation, due to a high volume of colleagues having no Work Email address,

    Kind Regards,

    Brad

  • Lana Prout
    It's time to vote for your favorite Change Agents of...5.0
    Announcement posted February 12, 2019 by Lana ProutGreen Ribbon: 100+ Points, tagged Announcements, Financials, Procurement, Project Portfolio Management, Risk Management in ERP Members > ERP Announcements public
    Title:
    It's time to vote for your favorite Change Agents of Finance!
    Announcement:
     
    Oracle Cloud Customer Connect
    Announcement

    It's time to vote for your favorite Change Agents of Finance!

    The voting for the 2019 Oracle Change Agents of Finance Awards is now open.  Review the award finalists and vote for your favorite finance heroes by February 20th. Award winners will be notified in February and will receive a complimentary pass to attend Modern Business Experience, presented by Oracle, March 19-21, 2019 in Las Vegas where they will be recognized in a special award ceremony.

    Vote Now -> https://changeagents.oracle-awards.com/a

    COAVoteNow.png

    Integrated Cloud Applications & Platform Services
     
     
     
  • Evan Danek
    Idea: License Management Reporting Work Area5.0
    Topic posted February 7, 2018 by Evan DanekGold Trophy: 10,000+ Points, tagged Financials, HCM, Procurement, Project Portfolio Management, Sales, SCM, Security in Applications Security public
    Title:
    Idea: License Management Reporting Work Area
    Summary:
    Idea: License Management Reporting Work Area
    Content:
    1. As a customer we would like to be in compliance with our contracted number of licenses. We would like this process to be as user friendly as possible, since we would like to remain partners with Oracle. This could be accomplished through a dedicated work area within Oracle, or through out-of-box reports made available in the BI catalog. LMS has provided us with two audit reports to cover role access to the application, however they do not make it clear how many licenses we are utilizing.
    2. As a customer, we would like to be in compliance, we would like to use these reports to also audit the security of our application/ access of our users, and we would also like to know when we need to increase our license count with Oracle.
  • Yasmin
    Mass password resetAnswered85.0
    Topic posted September 21, 2017 by YasminSilver Trophy: 7,500+ Points, tagged Financials, HCM, Other, Procurement, Project Portfolio Management, Public Sector, Sales, SCM, Security in Applications Security public
    Title:
    Mass password reset
    Summary:
    Mass password reset (1000s of users)
    Content:

    Is there any way to Mass password reset (1000s of users) ?

  • Yasmin
    Roles and users accessAnswered95.0
    Topic posted September 20, 2017 by YasminSilver Trophy: 7,500+ Points, tagged Financials, HCM, Other, Procurement, Project Portfolio Management, Public Sector, Sales, SCM, Security, Tip in Applications Security public
    Title:
    Roles and users access
    Summary:
    Roles and users access audit report
    Content:

    We are looking to run an audit report to list all the users and their access roles 

    where can we get/run such report?

  • Yasmin
    Deactivate Accounts33.7
    Topic posted September 25, 2017 by YasminSilver Trophy: 7,500+ Points, tagged Financials, HCM, Other, Procurement, Project Portfolio Management, Public Sector, Security in Applications Security public
    Title:
    Deactivate Accounts
    Summary:
    Deactivate Accounts keep coming back
    Content:

        Do you know anything about these 3 System Accounts?

    I’ve been trying to De-activate them but they stay Activated.  Can you confirm if these are Default System accounts required for operation?

    1.           em_monitoring 

    2.           PUBLIC 

    3.           Faoperator 

  • Kunal Daya
    Report that shows a role and all the duties and privleges it...34.5
    Topic posted April 8, 2019 by Kunal DayaRed Ribbon: 250+ Points, tagged Financials, HCM, Other, Procurement, Project Portfolio Management, Security in Applications Security public
    Title:
    Report that shows a role and all the duties and privleges it inherits
    Summary:
    Report that shows a role and all the duties and privleges it inherits
    Content:

    Hi All,

    I am trying to build a report that shows roles and what it inherits in terms of data roles, duties and privleges. Does anyone know a report that exists with this information or the tables where this information is stored?