Posted on December 2nd, 2007 by Sanjit Anand |
Print This Post
|
Email This Post
This new Feature in R12 ,enables companies that have implemented or implementing shared services operating model to efficiently process business transactions by allowing them to access, process and report on data for an unlimited number of operating units within a single applications responsibility. Users are no longer required to switch applications responsibilities when processing transactions for multiple operating units.
Data security is maintained using security profiles that determine the data access privileges associated to responsibilities granted to a user.
Because of this you can perform multiple tasks across operating units without changing responsibilities, the simple case can be best described as diagram in the left, where 3 user from three difference OU’s required three separate responsibility to perform the task.
MOAC Benefits..
- Multi-Org Access Control feature allows you to enter, process data and generate reports from a single responsibility
- This is achieved by providing the Operating Unit field on the forms/pages and while running the concurrent processes
- To Set this feature you need to define the security profile containing operating units and set it at MO: Security Profile
- You can default the Operating Unit on forms/pages by setting the MO: Default Operating Unit profile
What are the new changes from Multi Organization(Multi Org) to Multiple Organization Access Control.
- As discussed above, security Profiles for data security
- MO: Security Profile
- List of operating units for a responsibility
- OU field on UI
- all transactions
- setup data specific to OU, like transaction type
- Enhanced Multi-Org Reporting and Processing
- Ledger/Ledger Set parameter on accounting reports and processes
- OU parameter on other standard reports and processes
- For example: submit the Payables Open Interface Import w/OU param null to import all records across all OUs
Where and how to define a security profile?
Using Oracle HRMS, you can define your security profile using two forms:
- The Security Profile form
- The Global Security Profile form that is shown here.
The Security Profile Form allows you to select operating units from only one Business Group. The Global Security profile Form allows you to select operating units from multiple Business Groups.
The decision on which form to use is really up to you and depends on your HR implementation and how you want to partition data. All you need to do is enter a name, and select the Security Type called “Secure organizations by organization hierarchy and/or organization listâ€. This allows you to assign multiple OUs. When assigning operating units, first select classification Operating Unit, and then select the organization or Operating Unit name. You can assign as many operating units as you want.
December 3rd, 2007 at 1:23 am
Illustration clear and new feature will enhance peformance as I expect
January 12th, 2008 at 2:44 am
[...] MOAC : From Multi-Org….To Multi-Access [...]
February 5th, 2008 at 12:48 am
[...] MOAC : From Multi-Org….To Multi-Access [...]
May 11th, 2008 at 1:46 am
Hi,
I have a query wrt R12 MOAC …as we know one of the purpose of defining multiple operating unit was just to bifarcate the data via the help of security rule , in earlier version of oracle apps 11.5.10.2 we used to do the same. But in R12 , we can have a look at multiple OU’s via a single responsibility, but we stand on the same position , if we want to query the invoice of a different OU , but it wont get populated as there has been a security rule being applied. Is there any workaround to by pass the security rule and see the transaction ..
May 11th, 2008 at 7:07 pm
Thats true as you know in R11i, we are using Org Specific Views to filter rows with a specific ORG_ID.
As told you earlier in above document, In R12, the views are no longer used. Instead, Synonym together with Security Policy are used to return rows for a single operating unit.
Followings provide the steps to retrieve Org Specific rows from a Synonym. (In R12, we are using “mo_global.set_policy_context” instead of “dbms_application_info.set_client_info” as in R11i.)
This was , you can acheive
To filter rows from synonym using ORG_ID :
if you are using SQL*Plus
exec mo_global.set_policy_context(’S', &org_id);
if using Toad
Begin
mo_global.set_policy_context(’S', &org_id);
End;
May 11th, 2008 at 7:17 pm
Get use of MO_GLOBAL Package to handle such kind of senarios.
1. For setting the org context:
begin
fnd_client_info.set_org_context(204);
MO_GLOBAL.init(’appl’);
end;
MO_GLOBAL.init :
Manages Initialization code for Organization Security Policy.
2. For setting global initialization :
In PL/SQL :
begin
fnd_global.apps_initialize(&user_id,&responsibility_id,&responsibility_application_id);
mo_global.init(’&product_short_name’);
end;
In SQL :
execute fnd_global.apps_initialize(&user_id,&responsibility_id,&responsibility_application_id);
execute mo_global.init(’&product_short_name’);
you can get these values through this query
SELECT USER_ID,RESPONSIBILITY_ID,RESPONSIBILITY_APPLICATION_ID, SECURITY_GROUP_ID
FROM FND_USER_RESP_GROUPS
WHERE USER_ID = (SELECT USER_ID FROM FND_USER WHERE USER_NAME = ‘&user_name’)
AND RESPONSIBILITY_ID = (SELECT RESPONSIBILITY_ID FROM FND_RESPONSIBILITY_VL WHERE RESPONSIBILITY_NAME = ‘&resp_name’);
and then these two query
execute fnd_global.APPS_INITIALIZE (USER_ID, RESP_ID,RESP_APPL_ID);
execute mo_global.init(
May 12th, 2008 at 1:23 am
[...] http://www.oracleappshub.com/release12/moac-from-multi-orgto-multi-access/ [...]
May 12th, 2008 at 4:04 am
[...] MOAC : From Multi-Org….To Multi-Access [...]