Oracle Identity Manager (OIM)
What is OIM?
Oracle Identity Manager, or OIM, is an application to manage the workflow for gaining access to systems. At the moment, HRS is the only environment utilizing OIM, but it is designed to be a one stop application for your access needs. Some key features of OIM include:
- Automated workflow so a user can request access and not worry about obtaining the proper signatures on a request.
- OIM deprovisions access for a transfers, and terminations quickly and accurately. Manual deprovisioning processes are dependent on notification of the change.
- The ability to track a request to see its progress.
OIM has increased Security for HRS by having automated deprovisioning based on employment status, approval workflow, and MFA in front of OIM.
I logged into HRS and no longer have access!
This is a common issue that is generally tracked back to OIM working as designed. The four main reasons access is removed are:
- You had a transfer entered on your job record where your HRS entitlements were requested against.
- You had a termination entered on a job record where your HRS entitlements were requested against.
- An approver requested access removal during an HRS attestation.
- The HRS Security Awareness course was not completed within the 60 day time frame and access was removed.
Additionally, access may appear to be removed if a department change occurs because the data level is reset. If this occurs, access to menu paths on the left-side navigation of HRS are retained, but access to look up users is lost. This may also occur with a new user if a data level request has been forgotten in the request process.
If you are experiencing any access issues you should contact the Service Center help desk to determine the issue with your account.
Checking to see what access is on your HRS account.To view your current access in HRS, navigate to the Service Center Website and then select HRS Administration from the top menu. Here you should see general information as well as a greeting followed by your name. If you click on your name you will be directed to a page with your job information and additional tabs. There is a tab labeled Security Roles which will show you what is currently provisioned to your HRS account.
Tracking a request made by you or on your behalf.Within OIM you have the ability to view requests you have made for someone else or requests that were made on your behalf. To track a request, log in to OIM and select the small binocular icon in the top navigation section . Please note, you will need to use the Multi-Factor device or phone app to access OIM. After you have navigated to the Track Requests page, toward the right side of the page there is a dropdown that defaults to "Requests Raised By Me". This can be changed to "Requests Raised For Me" if that is the information you are seeking. Once your selection is in this field, press Search. If you are searching Requests Raised By Me, you can fill in the user's name in the Beneficiary field; however, selecting Search without filling in any fields will produce the full list of requests, and may be easier.
Requesting a new or viewing your current data level.
Data level refers to the user information you are allowed to view within the HRS system. The default data level for all users is sub-department, which allows access to an individual's full UDDS. If a user is gaining new access, it is likely that a data request will need to be made in order for them to view people outside of their immediate group. To view current data level information, select the My Access icon from the navigation options at the top of the screen . After you have navigated to My Access, select the Accounts tab and then select Peoplesoft HRS application instance. This will open tabs that should default to Detail Information (if this is not the case, select this tab). In Detail information, you can view your current data level by viewing the UDDS in Row Security Permissoin List. If the data level needs to be changed, select Modify accounts and you will be taken to a request page. Use the magnifying glass next to Row Security Permission list to choose your new data levels. The data level in HRS is a hierarchy which means the smaller the number the more people you can see.