Company Security

Each security group must be linked to a single primary company. This association is defined and managed in the Company Security file. If more than one company is selected as primary, a validation error will prevent check-in until resolved.

The Company Security folder includes the following components:

Component Purpose
Company Security File Assign and maintain the primary company for the security group.
Company Pages Set access permissions for company-level screens and features.
WebService Security Manage user authorization for web service operations.

Company Security File

The Company Security File designates the primary company for a security group. Users assigned to this group will see the selected company upon logging into Oracle Insurance Policy Administration.

Steps to Edit the Company Security File

  1. In the Navigation Explorer (left panel), navigate to Security | Application Security | Security Groups | [Security Group Name] | Company Security.

  2. Expand the Company Security folder and select the Company Security File.

  3. In the Configuration Area (right panel), select the appropriate config package from the toolbar dropdown.

  4. Click Check-Out to enable editing.

  5. In the configuration panel, a list of authorized companies appears.

  6. Select the checkbox for the primary company (only one allowed).

    • Select or deselect checkboxes for subsidiary companies as needed.

  7. Click Check-In to save changes to the database.

    Note: Selection of more than one primary company results in a validation error and blocks the check-in operation.

Company Pages

The Company Pages section provides granular control over which company-level pages and features are accessible to the security group. Security can be applied globally to all pages or on an individual page or component basis.

Access Flow:

  1. Set Company Security: Once the primary company is set, Company Pages becomes available for permissions configuration.

  2. Set Plan Security: After Company Pages, Plan Security options appear for the security group.

  3. Set Transaction Security: After Plan Security, available transactions can be managed for security.

Steps to Manage Company Page Permissions

Grant or Remove Access to All Pages

  1. In the Navigation Explorer (left panel), navigate to Security | Application Security | Security Groups | [Security Group Name] | Company Security | Company Pages.

  2. Expand the Company Pages folder and select the desired Company Page sub-folder.

  3. In the Configuration Area (right panel), select a Config Package from the toolbar dropdown.

  4. Click the three-dot (⋯) hamburger menu icon in the top-right corner of the toolbar to view grant control options.

  5. Select one of the following:

    • Grant Access to All Pages

    • Remove Access from All Pages

Grant or Remove Access on a Page-by-Page Basis

  1. Expand the Company Pages | Company Page Sub Folder and select the desired Company Page File to edit grant or remove access.

  2. In the Configuration Area (right panel), from the toolbar, choose the appropriate Config Package using the dropdown.

  3. Click Check-Out to enable editing.

  4. Editing Options

    • Available components may vary by page type:

      • Page Name (Fixed Block) - Located at the top, includes a checkbox for full page-level security.

      • Buttons (Expandable Section) - Configure access at the button level.

      • Comment Buttons (Expandable Section) - Configure access at the button level.

      • Fields (Expandable Section) - Apply field-level security settings.

      • Masking (Expandable Section) - Manages security for text field masks based on security levels defined in the AsCodeMaskSecurityLevel.

    • Sections automatically expand if configuration data is present; empty sections remain collapsed.

  5. To Update Permissions

    1. Click the pencil icon under the Action column to start editing.

      • For Buttons/Comment Buttons: Modify permission in the Allowed column (checkbox or Yes/No dropdown).

      • For Fields: Select the appropriate security level from the Security dropdown (For example, Visible and Editable, Hide field value, Disable field value).

      • For Masking: Choose the security level in the Security column.

    2. Confirm changes with the icon or cancel using the X icon.

  6. After completing the changes, click Check-In to save the updates to the database.

WebService Security

WebService Security controls user access to web services at the company level within a security group.

Steps to Grant Access to a WebService

  1. In the Navigation Explorer (left panel), navigate to Security | Application Security | Security Groups | [Security Group Name] | Company Security | WebService SecuritY.

  2. Expand the WebService Security folder and select the Company Name file.

  3. In the Configuration Panel (right panel), select the appropriate Config Package from the dropdown in the toolbar.

  4. Click Check-Out to enable editing.

  5. A list of authorized Web Services appears in the Configuration Panel.

  6. Select the checkboxes next to the Web Service Method and File ID combinations to authorize access.

  7. Click Check-In to save and apply the security settings.