READ ONLY User Level Cloud HCM Setup Procedure October 2015 by Peter Walsh 931-206-9738

NOTE: You must have the “IT Security Manager” and “OIMAdministrators” roles to perform these tasks.

OverviewThe read only configuration is set at the user level. Using the specific task named Manage Administrator Profile Values, read only access is applied against the user. Immediately after saving this task, whatever actions taken by the user in the instance are restricted to read only. This setup must be repeated in each separate Cloud instance.

The user can walk through the most complex procedures, see all LOVs, select any values and proceed through an entire transaction. But when the user tries to commit the data, it is then they are face with an error message which informs them that they have read only access. Again, whatever actions are taken are of no concern to this setting. The read only setting applies across all applications, roles, duties, privileges, security profile or whatever settings that a user may have because the read only access is set at the user level.

The user will not be able to update their personal information. So, it is problematic if you were to assign this user level control to an active employee. The solution is to create a user but not attach it to an actual employee.

The business requirement intent is to create a read only HCM Generalist. This document will identify the specific setup tasks, roles/duties assigned and configuration details.

Cloud HCM Setup Steps – Create Read Only HR Generalist user and role1. Navigator> Setup and Maintenance2. Go to task> Create Implementation Users3. Takes you to Oracle Identity Management 4. Click Administration (upper right hand side)5. In Users Region> Click Create User6. Enter required fields

a. Last Name (HR Generalist)b. Organization (XXXXX Users)c. User Type (Employee)d. Display Name (Read Only HR Generalist)e. User Login (READHRGEN###)f. Passwordg. Confirm Passwordh. Enter Email ID (Sample READHRGEN001@nothing.com)i. Savej. Go to Roles tabk. Click Assign

i. Application Diagnostics Viewerii. Employee

iii. HRAnalyst_ViewAlliv. HRSpecialist_ViewAll

7. Navigator> Scheduled Processes8. Submit> Send Pending LDAP Requests9. Submit> Retrieve Latest LDAP Changes

1

READ ONLY User Level Cloud HCM Setup Procedure October 2015 by Peter Walsh 931-206-9738

10. Navigator> Setup and Maintenance11. Go to task> Manage Administrator Profile Values12. Enter Profile Option Code> FND_READ_ONLY_MODE13. Search14. In “FND_READ_ONLY_MODE: Profile Values” region, click green plus sign 15. Click Profile Level dropdown> select “User”16. Click User name dropdown17. Click Search18. Enter User Name READHRGEN001 (which is first part of the email READHRGEN001@nothing.com)19. Click Profile Value dropdown> select “Enabled”20. Save and Close

Your actions take immediate effect. If you wish to update the values for a particular user, you can disable, enable or delete. If you wish multiple users, it is recommended to create a unique user for each person. This provides maximum password Security protection by user/role.

The user will see this banner on all navigation pages

2