Hello. We are in the process of building out our Oracle Cloud Fusion ERP product. We are leveraging the Entra/Azure AD Integration via a separate identity domain using the Oracle Fusion Applications Release 13 connector for User Provisioning. This is working really well to bring in users from Entra/Azure AD with their user information and the Fusion Role they should have. There is a gap, we would like to have this flow thru even further to automate the data access permission to the role.
So current state, User gets added to Entra, provisioning runs, they get the Fusion Roles. Then we have to manually go into Fusion to the manage data access for users, and manually add in the data permissions.
Future state - We only want to have to add the AD Groups to the user and the automation take care of the rest. Therefore user provisioning brings the user into Fusion and the data access mapping is inherited due to the role.
For instance - Whoever is assigned the AD Group that grants Accounts Receivable Inquiry role, will automatically get the Business Unit US assigned for the Accounts Receivable Inquiry role within the data permissions. So one stop for user management.
Anyone have luck with this? How did you get this area mapped together? We've been working with Oracle support for this last leg for over a month without success.
Thanks in advance