Oracle Apps Security Interview Questions & Answers
==================================================
1.Question :
------------
Can Security Rules prevent users in one organization in the same set of books from adding Cross Validation Rules to another organization?
Answers:
--------
There is not a way in the same set of books, to prevent users from one operating unit via security rules, from changing cross validation rules for another operating unit. The only way to do this would to be create a separate set of books for each operating unit. Since security rules prevent users from either viewing data or entering data in general, they do not pertain to set up issues such as creating cross validation rules. Therefore, the only other way to prevent one user from one organization from creating cross-validation rules to the other organization, when in the same set of books, would be to completely remove that menu function from the user.
2.Question :
------------
Every Country has a Global Manager or User Responsibility to access Global SOB but it is supposed to limit users to their own Legal Entities. However, an Argentian journal can be posted by the Chilian user. How is this possible?
Answers:
--------
This is working as intended. Security rules will prohibit a responsibility from being able to enter in certain values as well as prohibit the viewing of those values as well. However security rules will not prohibit the actions above because they are in the same set of books. The system does not determine if a journal has values in it that are blocked by security rules. If it did that, then the journal would appear as unbalanced. There would have to be an incredible amount of logic involved, which would further reduce performance, for the posting program to scan the journal for security rules first before posting. Posting does not take into consideration the rules, this is done at the time of journal entry .
3.Question :
------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
4.Question :
------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
5.Question :
------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
6.Question :
------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue?
Answers:
--------
The Security rule should not be modified by deleting an exclude or include as it may corrupt the rule. One should try to delete all rule lines (include and excludes) save and redefine the include and exclude the way that it should work and save. If the rule still doesn't work, it may be necessary to create a new rule and assign it to the responsibilities in place of the original rule.
7.Question :
------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue? Example of issue: A user in Argentina Entered a Journal Entry. Another User from Chile Posted the Argentina Entry in Global SOB. And later reversed it as well.
Answers:
--------
yes, we can remove the Exclude statement as these were never used before for a particular responsibility. The journals entered/reversed for Argentina will not have these Excluded values before, hence this should work.
8.Question :
------------
Is there a way to assign different security rules to a responsibility based on the User ID?
Answers:
--------
You cannot apply different security rules to the same responsibility for different users based on the user ID. You will have to create a new responsibility and define its own security rules. Then you can assign the new responsibility to one of the users.
9.Question :
------------
Can security rules be used to control the posting of journal entries?
Answers:
--------
Security rules apply only with regards to creation/modification of lines within a journal. They do not apply when the journal is posted.
10.Question :
-------------
Security rules don't seem to work on all forms when performing a query.
Answers:
--------
Flexfield Value Security gives you the capability to restrict the set of values a user can use during data entry. With easy-to-define security rules and responsibility level control, you can quickly set up data entry security on your flexfield segments and report parameters. Flexfield Value Security lets you determine who can use flexfield segment values and report parameter values. Based on your responsibility and access rules that you define, Flexfield Value Security limits what values you can enter in flexfield pop-up windows and report parameters. Security rules for the Accounting Flexfield also restrict query access to segment values in the Account Inquiry, Funds Available, and Summary Account Inquiry windows. In these windows, you cannot query up any combination that contains a secure value. However in all other forms, you will be able to query up a value even if it is restricted to the user.
11.Question :
-------------
Can Security Rules prevent users in one organization in the same set of books from adding Cross Validation Rules to another organization?
Answers:
--------
There is not a way in the same set of books, to prevent users from one operating unit via security rules, from changing cross validation rules for another operating unit. The only way to do this would to be create a separate set of books for each operating unit. Since security rules prevent users from either viewing data or entering data in general, they do not pertain to set up issues such as creating cross validation rules. Therefore, the only other way to prevent one user from one organization from creating cross-validation rules to the other organization, when in the same set of books, would be to completely remove that menu function from the user.
12.Question :
-------------
Every Country has a Global Manager or User Responsibility to access Global SOB but it is supposed to limit users to their own Legal Entities. However, an Argentian journal can be posted by the Chilian user. How is this possible?
Answers:
--------
This is working as intended. Security rules will prohibit a responsibility from being able to enter in certain values as well as prohibit the viewing of those values as well. However security rules will not prohibit the actions above because they are in the same set of books. The system does not determine if a journal has values in it that are blocked by security rules. If it did that, then the journal would appear as unbalanced. There would have to be an incredible amount of logic involved, which would further reduce performance, for the posting program to scan the journal for security rules first before posting. Posting does not take into consideration the rules, this is done at the time of journal entry .
13.Question :
-------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
14.Question :
-------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
15.Question :
-------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
16.Question :
-------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue?
Answers:
--------
The Security rule should not be modified by deleting an exclude or include as it may corrupt the rule. One should try to delete all rule lines (include and excludes) save and redefine the include and exclude the way that it should work and save. If the rule still doesn't work, it may be necessary to create a new rule and assign it to the responsibilities in place of the original rule.
17.Question :
-------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue? Example of issue: A user in Argentina Entered a Journal Entry. Another User from Chile Posted the Argentina Entry in Global SOB. And later reversed it as well.
Answers:
--------
yes, we can remove the Exclude statement as these were never used before for a particular responsibility. The journals entered/reversed for Argentina will not have these Excluded values before, hence this should work.
18.Question :
-------------
In Rel 11i with the intercompany segment being used, is it possible to have a security rule on the balancing segment (company) without it affecting the intercompany segment, since they share the same value set?
Answers:
--------
Yes it is possible. You would enable security on the value set, but then on the flexfield segment (intercompany) you would not enable security.
19.Question :
-------------
I have defined a security rule and assigned it to my responsibilty, but is still does not work, why?
Answers:
--------
Make sure that you have run the "Security List Maintainance" Process.
20.Question :
-------------
My security rules don't work for the Account Analysis and General Ledger reports in Release 11.0.3.
Answers:
--------
This functionality is available starting in Release 11i. In Releases 11 and lower, one cannot set security for standard reports. Security Rules will only limit users from a few functions (e.g. Account Inquiry, Budgets, Journal Entries, and FSGs). In addition, in Release 11i there is limited use of the security rule functionality for running standard reports. It appears that you're the goal to restrict users from submitting reports for a particular company cannot be accomplished using security rules.
1.Question :
------------
Can Security Rules prevent users in one organization in the same set of books from adding Cross Validation Rules to another organization?
Answers:
--------
There is not a way in the same set of books, to prevent users from one operating unit via security rules, from changing cross validation rules for another operating unit. The only way to do this would to be create a separate set of books for each operating unit. Since security rules prevent users from either viewing data or entering data in general, they do not pertain to set up issues such as creating cross validation rules. Therefore, the only other way to prevent one user from one organization from creating cross-validation rules to the other organization, when in the same set of books, would be to completely remove that menu function from the user.
2.Question :
------------
Every Country has a Global Manager or User Responsibility to access Global SOB but it is supposed to limit users to their own Legal Entities. However, an Argentian journal can be posted by the Chilian user. How is this possible?
Answers:
--------
This is working as intended. Security rules will prohibit a responsibility from being able to enter in certain values as well as prohibit the viewing of those values as well. However security rules will not prohibit the actions above because they are in the same set of books. The system does not determine if a journal has values in it that are blocked by security rules. If it did that, then the journal would appear as unbalanced. There would have to be an incredible amount of logic involved, which would further reduce performance, for the posting program to scan the journal for security rules first before posting. Posting does not take into consideration the rules, this is done at the time of journal entry .
3.Question :
------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
4.Question :
------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
5.Question :
------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
6.Question :
------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue?
Answers:
--------
The Security rule should not be modified by deleting an exclude or include as it may corrupt the rule. One should try to delete all rule lines (include and excludes) save and redefine the include and exclude the way that it should work and save. If the rule still doesn't work, it may be necessary to create a new rule and assign it to the responsibilities in place of the original rule.
7.Question :
------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue? Example of issue: A user in Argentina Entered a Journal Entry. Another User from Chile Posted the Argentina Entry in Global SOB. And later reversed it as well.
Answers:
--------
yes, we can remove the Exclude statement as these were never used before for a particular responsibility. The journals entered/reversed for Argentina will not have these Excluded values before, hence this should work.
8.Question :
------------
Is there a way to assign different security rules to a responsibility based on the User ID?
Answers:
--------
You cannot apply different security rules to the same responsibility for different users based on the user ID. You will have to create a new responsibility and define its own security rules. Then you can assign the new responsibility to one of the users.
9.Question :
------------
Can security rules be used to control the posting of journal entries?
Answers:
--------
Security rules apply only with regards to creation/modification of lines within a journal. They do not apply when the journal is posted.
10.Question :
-------------
Security rules don't seem to work on all forms when performing a query.
Answers:
--------
Flexfield Value Security gives you the capability to restrict the set of values a user can use during data entry. With easy-to-define security rules and responsibility level control, you can quickly set up data entry security on your flexfield segments and report parameters. Flexfield Value Security lets you determine who can use flexfield segment values and report parameter values. Based on your responsibility and access rules that you define, Flexfield Value Security limits what values you can enter in flexfield pop-up windows and report parameters. Security rules for the Accounting Flexfield also restrict query access to segment values in the Account Inquiry, Funds Available, and Summary Account Inquiry windows. In these windows, you cannot query up any combination that contains a secure value. However in all other forms, you will be able to query up a value even if it is restricted to the user.
11.Question :
-------------
Can Security Rules prevent users in one organization in the same set of books from adding Cross Validation Rules to another organization?
Answers:
--------
There is not a way in the same set of books, to prevent users from one operating unit via security rules, from changing cross validation rules for another operating unit. The only way to do this would to be create a separate set of books for each operating unit. Since security rules prevent users from either viewing data or entering data in general, they do not pertain to set up issues such as creating cross validation rules. Therefore, the only other way to prevent one user from one organization from creating cross-validation rules to the other organization, when in the same set of books, would be to completely remove that menu function from the user.
12.Question :
-------------
Every Country has a Global Manager or User Responsibility to access Global SOB but it is supposed to limit users to their own Legal Entities. However, an Argentian journal can be posted by the Chilian user. How is this possible?
Answers:
--------
This is working as intended. Security rules will prohibit a responsibility from being able to enter in certain values as well as prohibit the viewing of those values as well. However security rules will not prohibit the actions above because they are in the same set of books. The system does not determine if a journal has values in it that are blocked by security rules. If it did that, then the journal would appear as unbalanced. There would have to be an incredible amount of logic involved, which would further reduce performance, for the posting program to scan the journal for security rules first before posting. Posting does not take into consideration the rules, this is done at the time of journal entry .
13.Question :
-------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
14.Question :
-------------
Forgot to check the security enabled flag for each segment and it is not updatable. How do I correct this?
Answers:
--------
Check your Accounting Flexfield Structure possibly it is frozen. Unfreeze the Structure and then you should be able to enable Security for the Segment.
15.Question :
-------------
In General Ledger,a security rule of a parent with children, was setup to include the parent and assigned to a responsibility however, it is not functioning properly.
Answers:
--------
System allows the account the customer wanted but doesn't disallow the ones that are children of the parent values excluded.
16.Question :
-------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue?
Answers:
--------
The Security rule should not be modified by deleting an exclude or include as it may corrupt the rule. One should try to delete all rule lines (include and excludes) save and redefine the include and exclude the way that it should work and save. If the rule still doesn't work, it may be necessary to create a new rule and assign it to the responsibilities in place of the original rule.
17.Question :
-------------
Is it feasible to delete an Exclude statement in order to resolve a Security Rule issue? Example of issue: A user in Argentina Entered a Journal Entry. Another User from Chile Posted the Argentina Entry in Global SOB. And later reversed it as well.
Answers:
--------
yes, we can remove the Exclude statement as these were never used before for a particular responsibility. The journals entered/reversed for Argentina will not have these Excluded values before, hence this should work.
18.Question :
-------------
In Rel 11i with the intercompany segment being used, is it possible to have a security rule on the balancing segment (company) without it affecting the intercompany segment, since they share the same value set?
Answers:
--------
Yes it is possible. You would enable security on the value set, but then on the flexfield segment (intercompany) you would not enable security.
19.Question :
-------------
I have defined a security rule and assigned it to my responsibilty, but is still does not work, why?
Answers:
--------
Make sure that you have run the "Security List Maintainance" Process.
20.Question :
-------------
My security rules don't work for the Account Analysis and General Ledger reports in Release 11.0.3.
Answers:
--------
This functionality is available starting in Release 11i. In Releases 11 and lower, one cannot set security for standard reports. Security Rules will only limit users from a few functions (e.g. Account Inquiry, Budgets, Journal Entries, and FSGs). In addition, in Release 11i there is limited use of the security rule functionality for running standard reports. It appears that you're the goal to restrict users from submitting reports for a particular company cannot be accomplished using security rules.
No comments:
Post a Comment