Presentation is loading. Please wait.

Presentation is loading. Please wait.

ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心 陳育亮 資訊管理學系 莫明鳳.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心 陳育亮 資訊管理學系 莫明鳳."— Presentation transcript:

1 ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心 陳育亮 資訊管理學系 莫明鳳

2 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

3 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

4 ERP 世新大學 ERP 實驗室 Responsibility Definition Responsibility –A collection of authorizations. user Oracle application responsibility Windows Reports

5 ERP 世新大學 ERP 實驗室

6 Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources

7 ERP 世新大學 ERP 實驗室 Responsibility Component Data group Request security group menu exclusions

8 ERP 世新大學 ERP 實驗室 Data Group Definition Data Group –A collection of pairings of an application with an Oracle ID. –Specify the oracle application database accounts to which a responsibility’s forms and concurrent programs connect.

9 ERP 世新大學 ERP 實驗室 Data Group Responsibility xyz Oracle IDCUS Oracle IDAR Oracle IDAP Oracle IDGL Data group Form Program Server Database Table

10 ERP 世新大學 ERP 實驗室

11 Responsibility Component Data group Request security group menu exclusions

12 ERP 世新大學 ERP 實驗室 Menu & Exclusions Definition Menu –The forms that a responsibility can display and the functions it can access. Exclusions –Modify the responsibility’s access to the forms and functions specified by a menu.

13 ERP 世新大學 ERP 實驗室 Menu Menu Level 1 Function-A Menu Level 2 Function-B Function-C Menu Level 3 Function-A Function-D

14 ERP 世新大學 ERP 實驗室 Exclusion and Final Menu Menu Level 1 Function-A Menu Level 2 Function-B Function-C Menu Level 3 Function-A Function-A Function-D Exclude function Exclude Menu Menu Level 1 Menu Level 2 Function-B Function-C Function-D

15 ERP 世新大學 ERP 實驗室

16 Responsibility Component Data group Request security group menu exclusions

17 ERP 世新大學 ERP 實驗室 Request Security Group Definition Request Security Group –A collection of reports and other concurrent programs. responsibility –Request group lists the concurrent programs that a responsibility can run. –Request group is assigned to a responsibility, it’s refered to as a request security group.

18 ERP 世新大學 ERP 實驗室

19 Responsibility Component Data group Request security group menu exclusions

20 ERP 世新大學 ERP 實驗室 Using Responsibility Using predefined responsibility Define application user Using custom responsibility Define or modify responsibility Exclude functions and menus Define applications user Define or modify data group Define or modify menu Define or modify request group

21 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security –Responsibility Definition Component –Create User account Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources Applications DBA Duties

22 ERP 世新大學 ERP 實驗室 User and Responsibility user Oracle application responsibility Windows Reports

23 ERP 世新大學 ERP 實驗室 Create User Account Enter user name and password Require password change limit access attempts Enter user’s start and end dates Assign one or more responsibilities

24 ERP 世新大學 ERP 實驗室

25 Practice 1 & 2 Query Responsibility “System Administrator” and all it’s components. Create a User Account named “your username01” by assigning Responsibility “System Administrator”.

26 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources Applications DBA Duties

27 ERP 世新大學 ERP 實驗室 Request Overview Request table Run program … Run program abc Run program … User submits request to run program abc Concurrent manager Concurrent manager starts program abc

28 ERP 世新大學 ERP 實驗室 Submit Request Flow Submit Request Enter Information Click Submit Record RequestID Enter Parameters Define Submission Schedule Completion Options Optional May be required Optional

29 ERP 世新大學 ERP 實驗室

30 Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources Applications DBA Duties

31 ERP 世新大學 ERP 實驗室 Request Group A collection of reports and other concurrent programs within a responsibility. One of responsibility’s components. Responsibility level. Include –Application –Program –Set

32 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports –Request –Request Group –Request Set Administering Concurrent Managers Auditing System Resources

33 ERP 世新大學 ERP 實驗室 Request Set A collection of reports and other concurrent programs that user group together themselves. User level. Include –Stage A component of a request set used to group requests within the set.

34 ERP 世新大學 ERP 實驗室 Request Set Stages Stage 3 Request 4 Request 5 Stage 1 Request Set Request 1 Request 2 Stage 2 Request 3

35 ERP 世新大學 ERP 實驗室 Defining a Request Set Enter Request Set Names Define Stages Link Stages Save Enter Requests for Stage Enter Request Parameter

36 ERP 世新大學 ERP 實驗室

37 Request Set Privileges PrivilegeCreateEdit Sets Contain OwnCreatedSetsChangeOwners UserYesOwnRequest Group’s Reports YesNo SysAdmYesAllAny ReportsNoYes

38 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

39 ERP 世新大學 ERP 實驗室 Request Overview Request table Run program … Run program abc Run program … User submits request to run program abc Concurrent manager Concurrent manager starts program abc

40 ERP 世新大學 ERP 實驗室 Concurrent Manager Concurrent Manager Specialization RulesWork Shifts Target Processes Program A Program B

41 ERP 世新大學 ERP 實驗室 Work Shifts & Priorities Priority Work Shift Definition Example 1 Specific date & range of times April 15,2001 8:00am~5:00PM 2 Specific date but no range of times April 15,2001 3 Range of days & range of times Mon~Fri 8:00am~5:00pm 4 Range of days but no range of times Mon~Fri 5 Range of times but no date and no range of days 8:00am~5:00pm 6 Standard work shift: no dates,days, or time defined 24 hrs a day 365 days a year

42 ERP 世新大學 ERP 實驗室 Specialization Rule Action Action Type ApplicationName Name Include Exclude Combined Rule Oracle ID Program Request Type User Application N/A ◎ Specialization Rule:for a particular manager ◎ Combined Rule:generally for multiple managers

43 ERP 世新大學 ERP 實驗室

44 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

45 ERP 世新大學 ERP 實驗室 Transaction Manager Transaction managers handle synchronous requests. Each transaction manager is associated with a particular data group.

46 ERP 世新大學 ERP 實驗室

47 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers –Concurrent Manager –Transaction Manager –Conflict Domain Auditing System Resources

48 ERP 世新大學 ERP 實驗室 Conflicts Domains Logical DataBase Logical DataBase Program A Program B Program A Program B Domain 1Domain 2

49 ERP 世新大學 ERP 實驗室 Processing Conflict Domain Hierarchy –A program parameter –The system profile option “Concurrent:Conflicts Domains” –Standard Default Domain

50 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources –Sign On Audit –AuditTrail

51 ERP 世新大學 ERP 實驗室 Types of Auditing Oracle Application Auditing user activity(Sign on Audit) Auditing database row changes(AuditTrail) Database table Audit table

52 ERP 世新大學 ERP 實驗室 Auditing User Activity Sign On Audit System Profile Option Sign On Audit Report Monitor User Form

53 ERP 世新大學 ERP 實驗室 System Profile – Audit Level None User Responsibility Form System Profile display by Application Responsibility User Site Audit Level

54 ERP 世新大學 ERP 實驗室 Sign On Audit Reports Sign On Audit Forms Report Sign On Audit Users Report Sign On Audit Responsibilities Sign On Audit Concurrent Requests Report Sign On Audit Unsuccessful Login Report

55 ERP 世新大學 ERP 實驗室 Online Monitor Use this window to monitor what your application users are currently doing.

56 ERP 世新大學 ERP 實驗室 Agenda Managing Application Security Managing Concurrent Programs and Reports Administering Concurrent Managers Auditing System Resources –Sign On Audit –AuditTrail

57 ERP 世新大學 ERP 實驗室 AuditTrail Auditing Database Changes Database table Audit table Insert Update Delete

58 ERP 世新大學 ERP 實驗室 Steps of AuditTrail Identify tables and columns to be audited. Create audit group. Specify columns for auditing. Identify Oracle IDs to be audited. Run AuditTrail Update Tables Report.

59 ERP 世新大學 ERP 實驗室 Create Audit Group

60 ERP 世新大學 ERP 實驗室 Specify Column for Auditing

61 ERP 世新大學 ERP 實驗室 Run AuditTrail Update Tables Report

62 ERP 世新大學 ERP 實驗室 Practice 3 & 4 Concurrent Manager Admin Window to query concurrent managers status. Auditing –Open your Sign-On:Audit Level to Form Level by Displaying User. –Run Sign On Audit User Report. (Request) –Monitor online user status.

Download ppt "ERP 世新大學 ERP 實驗室 Oracle ERP Application Security 電算中心 陳育亮 資訊管理學系 莫明鳳."

Similar presentations

Home This training presentation is designed to introduce the Residency Management Suite to new users. This presentation covers the following topics: Login.

Home This training presentation is designed to introduce the Residency Management Suite to new users. This presentation covers the following topics: Login.
Holiday Calendar Menu for navigation This is School Management System’s home screen. This application will automate School or College. It contains a Menu.

Holiday Calendar Menu for navigation This is School Management System’s home screen. This application will automate School or College. It contains a Menu.
Tutorial EBSCOadmin User Groups support.ebsco.com.

Tutorial EBSCOadmin User Groups support.ebsco.com.
Oracle9i Database Administrator: Implementation and Administration 1 Chapter 12 System and Object Privileges.

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 12 System and Object Privileges.
Chapter 9 Auditing Database Activities

Chapter 9 Auditing Database Activities
CSCI 150 Database Applications Chapter 1 – Getting Started.

CSCI 150 Database Applications Chapter 1 – Getting Started.
New Student Orientation Registration System Stephen Nakamura EE496 Final Presentation Fall 2008.

New Student Orientation Registration System Stephen Nakamura EE496 Final Presentation Fall 2008.
3 Copyright © 2004, Oracle. All rights reserved. Working in the Forms Developer Environment.

3 Copyright © 2004, Oracle. All rights reserved. Working in the Forms Developer Environment.
Compe 341 Oracle Installation Procedure. Oracle From Click.

Compe 341 Oracle Installation Procedure. Oracle From Click.
Advanced Databases Basic Database Administration Guide to Oracle 10g 1.

Advanced Databases Basic Database Administration Guide to Oracle 10g 1.
EmpowHR EmpowHR Security Overview. 2 Application Security Administration Permission List Roles User Profiles Row level security Distributed Security Administration.

EmpowHR EmpowHR Security Overview. 2 Application Security Administration Permission List Roles User Profiles Row level security Distributed Security Administration.
SiS Technical Training Development Track Technical Training(s) Day 1 – Day 2.

SiS Technical Training Development Track Technical Training(s) Day 1 – Day 2.
South Dakota Library Network MetaLib Management Basics IP Ranges / Proxy Servers South Dakota Library Network 1200 University, Unit 9672 Spearfish, SD.

South Dakota Library Network MetaLib Management Basics IP Ranges / Proxy Servers South Dakota Library Network 1200 University, Unit 9672 Spearfish, SD.
Login Screen This is the Sign In page for the Dashboard Enter Id and Password to sign In New User Registration.

Login Screen This is the Sign In page for the Dashboard Enter Id and Password to sign In New User Registration.
Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.

Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.
1 System for Administration, Training, and Educational Resources for NASA Managing Access.

1 System for Administration, Training, and Educational Resources for NASA Managing Access.
Session 5: Working with MySQL iNET Academy Open Source Web Development.

Session 5: Working with MySQL iNET Academy Open Source Web Development.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Classroom User Training June 29, 2005 Presented by:

Classroom User Training June 29, 2005 Presented by:
Login Screen This is the Sign In page for the Dashboard New User Registration Enter Id and Password to sign In.

Login Screen This is the Sign In page for the Dashboard New User Registration Enter Id and Password to sign In.

Similar presentations

Ads by Google