Step 4 Managing Security Roles and Privileges

In Oracle Insurance Rules Workbench, configuration and management of all security roles and privileges for release management are performed within the Internal Versioning System (IVS) for each environment. This approach ensures secure and controlled access to operations such as rule check-in, check-out, migration, and deployment—while maintaining backward compatibility.

First User and Its Access Behavior

When a new environment is created, a corresponding Security Manager (the First User) is defined as part of the environment setup process. This user is initially granted minimal privileges, limited to configuring roles, assigning privileges, and managing user assignments within that specific environment. Until additional privileges are configured, the Security Manager cannot perform other tasks. Users without assigned roles have restricted access and will be prompted to contact the system administrator if they attempt performing CRUD operations.

This framework ensures that only authorized users can perform release management activities.

Review Roles and Privileges

  1. Log in to Oracle Insurance Rules Workbench as the Security Manager and select the desired environment.

  2. Navigate to Security | Palette Security folder in the Navigation Explorer (left panel).

  3. Expand the Palette Security section to access:

    • Security Roles

    • User Security

  4. Click Security Roles to open the Security Role Configuration Area (right panel).

  5. Review the list of available security roles and their associated privileges.

    • The default security role and privileges assigned to the Security Manager during environment setup are shown in the Security Roles list.

    • Click the role name hyperlink to view the currently assigned privileges for that role.

    • The Privileges assignment window will display the role’s current privileges.

      • To modify privileges for the default (or any) role, use the arrow icons to move privileges between the Available Privileges and Assigned Privileges sections.

  6. Best practice: Rather than modifying the default Security Manager role, create new roles for different sets of privileges, and assign them to IVS users as needed. This ensures clarity, maintains system integrity, and preserves backward compatibility.

Review User

  1. In the Navigation Explorer (left panel), navigate to Security | Palette Security | User Security.

  2. Click User Security file to open the User Security Configuration Area (right panel).

  3. The First User (Security Manager) and the associated role are displayed in the User list.

  4. Imported users will have the default role as 'No Access'. Their access must be updated by assigning the appropriate security role.

  5. New users can be created and assign security roles as required using this interface.

System Behavior

  • Users inherit permissions based on their assigned security roles.

  • Role-based access controls determine whether users can perform CRUD operations, check-in and check-out specific to release management process.

Note: Log out of the Security Manager account. Log in to Oracle Insurance Rules Workbench with the new user credentials created by the Security Manager.